7.5
CVE-2013-4878
- EPSS 13.94%
- Veröffentlicht 18.07.2013 16:51:56
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2012-1823.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Parallels ≫ Parallels Plesk Panel Version9.0
Parallels ≫ Parallels Plesk Panel Version9.2
Parallels ≫ Parallels Small Business Panel Version10.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 13.94% | 0.941 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|