CVE-2011-4742

Name of the Vulnerable Software and Affected Versions Parallels Plesk Panel version 10.2.0 build 20110407.20

Description The issue allows remote attackers to obtain potentially sensitive information by reading certain web pages, such as smb/user/list and other files, that contain e-mail addresses not intended for correspondence about local application deployment.

Recommendations For Parallels Plesk Panel version 10.2.0 build 20110407.20, consider restricting access to sensitive web pages, such as smb/user/list, to minimize the risk of exploitation. Additionally, review the Control Panel configuration to ensure that only necessary information is exposed. At the moment, there is no information about a newer version that contains a fix for this vulnerability.