Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass authentication by leveraging an unattended workstation, as demonstrated by forms on certain pages under admin/index.php/default.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Parallels Plesk Panel信任管理漏洞
Vulnerability Description
Parallels Plesk Panel 10.3.1_build1013110726.09版本中存在漏洞,该漏洞源于计费系统生成密码格式字段时没有禁用自动完成功能。远程攻击者更易于通过利用未被注意的工作站绕过认证,正如admin/index.php/default中某些页面的格式证明的。
CVSS Information
N/A
Vulnerability Type
N/A