1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Security Vulnerability?

Discussion in 'Legacy Sitebuilder Software' started by billguy, Jul 24, 2006.

  1. billguy

    billguy Guest

    0
     
    If I grant my domain users access to site builder, why is the administrative password found in the url of the page source?

    E.g.
    Admin grants access to regular user jblow to use site builder for his domain.
    Jblow logs into his control panel
    Jblow sees the new site builder button
    Jblow views the html source for that particular page and finds the administrator password in the url.

    Am I missing something????
     
  2. billguy

    billguy Guest

    0
     
    nm. this only happens if sitebuilder, plesk, and the client domain are the same. my bad.
     
Loading...