Detections
Analytics
Plesk Panel Apache Arbitrary PHP Code Injection
high Nessus Plugin ID 66844
Language:
Synopsis
The remote web server is affected by a remote PHP code code injection vulnerability.Description
The remote host contains an Apache web server installation that is included with Parallels Plesk Panel and that is affected by a remote PHP code injection vulnerability. Due to an Apache configuration issue, a remote, unauthenticated attacker can exploit this issue by crafting a request allowing them to execute arbitrary PHP code, subject to the privileges of the Apache user.Solution
Upgrade Plesk Panel to the latest available version or refer to the referenced link for mitigation options.See Also
https://seclists.org/fulldisclosure/2013/Jun/21
http://web.archive.org/web/20140421000554/http://kb.parallels.com/116241
Plugin Details
Severity: High
ID: 66844
File Name: plesk_apache_code_execution.nasl
Version: 1.21
Type: remote
Family: CGI abuses
Published: 6/7/2013
Updated: 3/28/2022
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.0
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2013-4878
Vulnerability Information
CPE: cpe:/a:parallels:parallels_plesk_panel
Required KB Items: www/PHP
Exploit Available: true
Exploit Ease: No exploit is required
Exploited by Nessus: true
Vulnerability Publication Date: 6/5/2013
CISA Known Exploited Vulnerability Due Dates: 4/15/2022
Exploitable With
CANVAS (CANVAS)
Core Impact
Metasploit (PHP CGI Argument Injection)
Reference Information
CVE: CVE-2012-1823, CVE-2013-4878
BID: 53388
CERT: 673343