Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass authentication by leveraging an unattended workstation, as demonstrated by forms in server/google-tools/ and certain other files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Parallels Plesk Panel 信任管理漏洞
Vulnerability Description
Parallels Plesk Panel 10.4.4_build20111103.18版本中存在漏洞,Control Panel未禁用“自动完成”功能就产生密码表单字段。远程攻击者可通过利用无人值守的工作站绕过认证,该漏洞已在server/google-tools/和某些其他文件的表单中被证实。
CVSS Information
N/A
Vulnerability Type
N/A