Parallels Plesk Small Business Panel CVE-2011-4763 SQL-Injection Vulnerability

Parallels Plesk Small Business Panel CVE-2011-4763 SQL-Injection Vulnerability

Parallels Plesk Small Business Panel is prone to a sql-injection vulnerability. Multiple SQL injection vulnerabilities in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by Wizard/Edit/Html and certain other files.