Parallels Parallels Plesk Small Business Panel — known CVE vulnerabilities
Every CVE whose affected-product data names Parallels Parallels Plesk Small Business Panel, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2011-4768 — CVSS 10.0 (critical): The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 omits the Content-Type header's charset parameter…
CVE-2011-4755 — CVSS 10.0 (critical): Parallels Plesk Small Business Panel 10.2.0 does not properly validate string data that is intended for storage in an XML document, which…
CVE-2011-4757 — CVSS 10.0 (critical): Parallels Plesk Small Business Panel 10.2.0 generates a password form field without disabling the autocomplete feature, which makes it…
CVE-2011-4761 — CVSS 10.0 (critical): Parallels Plesk Small Business Panel 10.2.0 omits the Content-Type header's charset parameter for certain resources, which might allow…
CVE-2011-4762 — CVSS 10.0 (critical): Parallels Plesk Small Business Panel 10.2.0 sends incorrect Content-Type headers for certain resources, which might allow remote attackers…
CVE-2011-4753 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL…
CVE-2011-4763 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow…
CVE-2011-4760 — CVSS 5.0 (medium): Parallels Plesk Small Business Panel 10.2.0 has web pages containing e-mail addresses that are not intended for correspondence about the…
CVE-2011-4767 — CVSS 5.0 (medium): The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 has web pages containing e-mail addresses that are…
CVE-2011-4766 — CVSS 5.0 (medium): The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allows remote attackers to obtain ASP source code…
CVE-2011-4759 — CVSS 5.0 (medium): Parallels Plesk Small Business Panel 10.2.0 generates web pages containing external links in response to GET requests with query strings…
CVE-2011-4756 — CVSS 5.0 (medium): Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier…
CVE-2011-4758 — CVSS 5.0 (medium): Parallels Plesk Small Business Panel 10.2.0 receives cleartext password input over HTTP, which allows remote attackers to obtain sensitive…
CVE-2011-4765 — CVSS 4.3 (medium): The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie…
CVE-2011-4764 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel…
CVE-2011-4754 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject…