Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretation conflict involving Wizard/Edit/Modules/Image and certain other files. NOTE: it is possible that only clients, not the Plesk product, could be affected by this issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Parallels Plesk Small Business Panel设计错误漏洞
Vulnerability Description
Parallels Plesk Small Business Panel 10.2.0版本中的Site Editor (也称为SiteBuilder)功能中存在漏洞,该功能删除了某些资源Content-Type头的charset参数。远程攻击者可通过利用涉及包含Wizard/Edit/Modules/Image和某些其他文件的解释冲突导致未明影响。
CVSS Information
N/A
Vulnerability Type
N/A