漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A Host Header Injection issue on the Login page of Plesk Obsidian through 18.0.49 allows attackers to redirect users to malicious websites via a Host request header. NOTE: the vendor's position is "the ability to use arbitrary domain names to access the panel is an intended feature."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Plesk Obsidian 输入验证错误漏洞
Vulnerability Description
Plesk Obsidian是瑞士Plesk公司的一款主机控制面板。 Plesk Obsidian 18.0.49版本及之前版本存在输入验证错误漏洞。攻击者利用该漏洞通过主机请求头将用户重定向到恶意网站。
CVSS Information
N/A
Vulnerability Type
N/A