CVE-2011-4737

Parallels Plesk Panel 10.2.0 build 20110407.20 - Exposure of Sensitive Information via Password in HTTP Response

Title source: llm
STIX 2.1

Description

The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 includes a submitted password within an HTTP response body, which allows remote attackers to obtain sensitive information by sniffing the network, as demonstrated by password handling in client@2/domain@1/odbc/dsn@1/properties/.

Scores

EPSS 0.0116
EPSS Percentile 63.3%

Details

CWE
CWE-200
Status published
Products (1)
parallels/parallels_plesk_panel 10.2.0_build20110407.20
Published Dec 16, 2011
Tracked Since Feb 18, 2026