Parallels Plesk Panel CVE-2011-4725 SQL-Injection Vulnerability

Parallels Plesk Panel CVE-2011-4725 SQL-Injection Vulnerability

Parallels Plesk Panel is prone to a sql-injection vulnerability. Multiple SQL injection vulnerabilities in the Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by login_up.php3 and certain other files.