N/A

The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 does not properly validate string data that is intended for storage in an XML document, which allows remote attackers to cause a denial of service (parsing error) or possibly have unspecified other impact via a crafted REST URL parameter, as demonstrated by parameters to admin/ and certain other files.

N/A

N/A

Parallels Plesk Panel输入验证漏洞

Parallels Plesk Panel 10.2.0_build1011110331.18版本中存在漏洞，该漏洞源于服务器管理面板未能准确验证XML文档储存的字符串数据。远程攻击者可以借助一个特制的REST URL参数导致拒绝服务（语法分析错误）或者可能具有其他未明的影响，该漏洞已在admin/和某些其他文件的参数中被证实。

N/A

N/A