CVE-2011-4767

Name of the Vulnerable Software and Affected Versions Parallels Plesk Small Business Panel version 10.2.0

Description The issue allows remote attackers to obtain potentially sensitive information by reading certain web pages, specifically those containing e-mail addresses not intended for correspondence about local application deployment. This is demonstrated by files such as js/Wizard/Status.js.

Recommendations For Parallels Plesk Small Business Panel version 10.2.0, consider restricting access to sensitive web pages and files, such as js/Wizard/Status.js, to minimize the risk of information disclosure.