CVE-2025-66431 | WebPros Plesk prior 18.0.73.5/18.0.74.2 on Linux Domain Creation symlink

Inserito da Angelo Barbosa | Dic 3, 2025 | CVE

A vulnerability labeled as critical has been found in WebPros Plesk on Linux. The impacted element is an unknown function of the component Domain Creation Handler. The manipulation results in symlink following.

This vulnerability is identified as CVE-2025-66431. The attack is only possible with local access. There is not any exploit available.

The affected component should be upgraded.

CVE-2025-66431 | WebPros Plesk prior 18.0.73.5/18.0.74.2 on Linux Domain Creation symlink

Post correlati

CVE-2024-2299 | parisneo lollms-webui Profile Picture cross site scripting

CVE-2022-2413 | simonpedge Slide Anything Plugin up to 2.3.46 on WordPress cross site scripting

CVE-2024-9515 | D-Link DIR-605L 2.13B01 BETA /goform/formSetQoS curTime buffer overflow

CVE-2024-9111 | pickplugins Product Designer Plugin up to 1.0.35 on WordPress SVG File Upload cross site scripting