Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-45008 | 1 Plesk | 1 Plesk | 2022-03-01 | 6.5 MEDIUM | 8.8 HIGH |
| ** DISPUTED ** Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability that allows privilege Escalation from user to admin rights. OTE: the vendor states that this is only a site-specific problem on websites of one or more Plesk users. | |||||
| CVE-2021-45007 | 1 Plesk | 1 Plesk | 2022-03-01 | 4.3 MEDIUM | 6.5 MEDIUM |
| ** DISPUTED ** Plesk 18.0.37 is affected by a Cross Site Request Forgery (CSRF) vulnerability that allows an attacker to insert data on the user and admin panel. NOTE: the vendor states that this is only a site-specific problem on websites of one or more Plesk users. | |||||