PleskLin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2020-11584 - Vulnerability Database
PleskLin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2020-11584
Medium
Reference:
CVE-2020-11584
Title:
PleskLin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:
A GET-based XSS reflected vulnerability in Plesk Onyx 17.8.11 allows remote unauthenticated users to inject arbitrary JavaScript HTML or CSS via a GET parameter.