Description
Untrusted search path vulnerability in /usr/local/psa/admin/sbin/wrapper in Parallels Plesk Panel 11.0.9 allows local users to gain privileges via a crafted PATH environment variable.
Remediation
References
Related Vulnerabilities
WordPress Plugin Content Cards Cross-Site Scripting (0.9.6)
WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more Cross-Site Scripting (1.6.9)
WordPress Plugin BuddyPress Unspecified Vulnerability (2.6.0)
WordPress Plugin Popup-Popup More Popups Directory Traversal (2.2.4)
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15400)