Description
A GET-based XSS reflected vulnerability in Plesk Onyx 17.8.11 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2006-0290 Vulnerability (CVE-2006-0290)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7002)
WebLogic Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-61764)
WordPress Plugin Zoho CRM Lead Magnet Cross-Site Scripting (1.6.9.1)
WordPress Plugin Product Catalog Cross-Site Scripting (4.2.8)