Information Disclosure in Parallels Plesk Panel Control Panel
CVE-2011-4737

Currently unrated

Key Information:

Vendor

Parallels

Vendor
CVE Published:
16 December 2011

What is CVE-2011-4737?

The Control Panel in Parallels Plesk Panel version 10.2.0 build 20110407.20 exposes sensitive information, including submitted passwords, within HTTP response bodies. This vulnerability enables remote attackers to intercept and acquire these passwords through network sniffing techniques, potentially compromising user credentials and sensitive data across affected instances. It is critical for users of this software to implement additional security measures to safeguard their systems from potential exploits.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.