Parallels Plesk Vulnerability
Parallels® Plesk Panel is a popular web-based control panel that lets you create websites, reseller accounts, email, and DNS entries on an online platform.
Affected Application: Parallels Plesk Panel for Linux/Unix versions 8.x-10.3, Plesk reloaded 7.0.x, 7.1.x, 7.5.x, Parallels Plesk Panel for Windows® verison 7.x – 10.3
Issue: On 3/12/2012, a SQL injection vulnerability was reported. This vulnerability lets attackers execute scripts that inject malicious code into your websites as a part of massive attack campaign.
Resolution: An update for Parallels Plesk Panel is available. For more information, visit the vendor’s website: http://kb.parallels.com/en/113321.
This information was compiled using information in the National Vulnerability Database. For more information about this issue, see the summary for CVE-2012-1557. To learn more about SQL injections, see Injection Flaws.
To learn about Website Protection Site Scanner, see Getting Started with Website Protection.
Comments are closed.