Known Vulnerabilities for Plesk by WebPros
Listed below are 4 of the newest known vulnerabilities associated with "Plesk" by "WebPros".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56843 json | Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-privileged authenticated customer t... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-48614 json | An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration d... | Not Provided | 2026-07-06 | 2026-07-06 |
| CVE-2026-44962 json | Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied inpu... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2025-65518 json | Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition. The vulnerability exists... | Not Provided | 2026-01-08 | 2026-07-15 |