A vulnerability, which was classified as critical, has been found in WebPros Plesk up to 18.0.77. This vulnerability affects unknown code of the component Plesk XML API. This manipulation causes improper authorization.

The identification of this vulnerability is CVE-2026-48614. It is possible to initiate the attack remotely. There is no exploit available.