Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates web pages containing external links in response to GET requests with query strings for enterprise/mobile-monitor/ and certain other files, which makes it easier for remote attackers to obtain sensitive information by reading (1) web-server access logs or (2) web-server Referer logs, related to a "cross-domain Referer leakage" issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Parallels Plesk Panel信息泄露漏洞
Vulnerability Description
Parallels Plesk Panel 10.4.4_build20111103.18版本中的Control Panel中存在漏洞,其产生包含外置链接的web页面,该链接响应带有enterprise/mobile-monitor/和某些其他文件中的查询字符串的GET请求。远程攻击者可通过读取(1)web服务器访问日志或者(2)web服务器引用日志获取敏感信息,该漏洞与"cross-domain Referer leakage"问题有关。
CVSS Information
N/A
Vulnerability Type
N/A