Insecure Display of Sensitive Information in Parallels Plesk Panel 10.2.0_build1011110331.18

Insecure Display of Sensitive Information in Parallels Plesk Panel 10.2.0_build1011110331.18

CVE-2011-4731 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 includes an RFC 1918 IP address within a web page, which allows remote attackers to obtain potentially sensitive information by reading this page, as demonstrated by admin/home/admin and certain other files.

Learn more about our Web App Pen Testing.