This writeup describes an information leakage vulnerability in PLESK 9.x where backup logs contain admin passwords in plaintext due to insecure directory permissions. The logs are accessible to low-privileged users, revealing credentials used in mysqldump operations.
Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:PLESK 9.x
No auth needed
Prerequisites:Access to the system as a low-privileged user · Presence of backup logs in /opt/psa/PMM/sessions or /usr/local/psa/PMM/sessions