Cross-site scripting (XSS) vulnerability in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote malicious users to inject arbitrary web script or HTML via the login parameter to preferences.html.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
parallels parallels_plesk_panel 10.4.4_build20111103.18 |