exploitDog

CVE-2011-4727

Опубликовано: 16 дек. 2011

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 does not properly validate string data that is intended for storage in an XML document, which allows remote attackers to cause a denial of service (parsing error) or possibly have unspecified other impact via a crafted REST URL parameter, as demonstrated by parameters to admin/ and certain other files.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:parallels:parallels_plesk_panel:10.2.0_build1011110331.18:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01918

Низкий

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-rjh5-3g5c-hvv6

github

больше 3 лет назад

The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 does not properly validate string data that is intended for storage in an XML document, which allows remote attackers to cause a denial of service (parsing error) or possibly have unspecified other impact via a crafted REST URL parameter, as demonstrated by parameters to admin/ and certain other files.

EPSS

Процентиль: 83%

0.01918

Низкий

10 Critical

CVSS2

Дефекты

CWE-20