Remote Code Exposure in Parallels Plesk Small Business Panel
CVE-2011-4766

Currently unrated

Key Information:

Vendor: Parallels
Status: Parallels Plesk Small Business Panel
Vendor: CVE Published:; 16 December 2011

What is CVE-2011-4766?

The Site Editor feature within Parallels Plesk Small Business Panel 10.2.0 presents a security risk, allowing remote attackers to access ASP source code by making a direct request to the file wysiwyg/fckconfig.js. Although the ASP source code is referenced in a JavaScript comment, the potential for unauthorized access raises concerns regarding the security configuration of the platform.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://xss.cx/examples/plesk-reports/plesk-10.2.0-site-ed...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 16, 2011

JSON

Parallels

What is CVE-2011-4766?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.