Primary

Context

Plesk APS Catalog XPath Injection Vulnerability Allowing Local Privilege Escalation

Vulnerability

Patched

An XPath injection vulnerability has been identified in Plesk's APS Application Catalog search feature. This issue arises because user input is incorporated into XPath queries without adequate sanitization. As a result, an authenticated, low-privileged user could execute arbitrary operating system commands on the server, leading to local privilege escalation.

Impact

Exploitation of this vulnerability allows for local privilege escalation on the affected server.

Remediation

Plesk has released fixed versions 18.0.76.2 and 18.0.75.1. Users should update Plesk to these versions. If an immediate upgrade is not possible, as a temporary workaround, disable the APS application catalog by adding 'enabled = off' under the '[aps]' section in the '/usr/local/psa/admin/conf/panel.ini' file.

Added: May 29, 2026, 4:21 PM

Updated: May 29, 2026, 4:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Plesk APS Catalog XPath Injection Vulnerability Allowing Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Plesk

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating