CVE-2011-4768

Name of the Vulnerable Software and Affected Versions Parallels Plesk Small Business Panel version 10.2.0

Description The issue is related to the Site Editor feature in Parallels Plesk Small Business Panel, where the Content-Type header's charset parameter is omitted for certain resources. This could potentially allow remote attackers to have an unspecified impact by exploiting an interpretation conflict involving certain files, such as Wizard/Edit/Modules/Image. It is noted that this issue might only affect clients, rather than the Plesk product itself.

Recommendations For Parallels Plesk Small Business Panel version 10.2.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.