Vulnerabilities > Plesk > Onyx
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-22 | CVE-2023-43784 | Exposure of Resource to Wrong Sphere vulnerability in Plesk Onyx 17.8.11 Plesk Onyx 17.8.11 has accessKeyId and secretAccessKey fields that are related to an Amazon AWS Firehose component. | 7.5 |
| 2020-08-03 | CVE-2020-11584 | Cross-site Scripting vulnerability in Plesk Onyx 17.8.11 A GET-based XSS reflected vulnerability in Plesk Onyx 17.8.11 allows remote unauthenticated users to inject arbitrary JavaScript, HTML, or CSS via a GET parameter. | 6.1 |