New vulnerability on the NVD: CVE-2020-11583

A GET-based XSS reflected vulnerability in Plesk Obsidian 18.0.17 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter.

from Pocket https://ift.tt/2Poc0vw
via IFTTT