CVE-2020-11583 (obsidian)

A GET-based XSS reflected vulnerability in Plesk Obsidian 18.0.17 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter.

View Full Alert

Related Posts

  • CVE-2020-10936

    Sympa before 6.2.56 allows privilege escalation. View Full Alert

  • CVE-2020-10945

    Centreon before 19.10.7 exposes Session IDs in server responses. View Full Alert

  • CVE-2020-10177

    Pillow before 6.2.3 and 7.x before 7.0.1 has multiple out-of-bounds reads in libImaging/FliDecode.c. View Full Alert