24x7serversupport Blog

Linux | CPanel | WHM | webhosting| Plesk | DirectAdmin | CentOs | Debian | Ubuntu Blog

https://www.24x7serversupport.com/
Plesk Windows

CVE-2020-13166: myLittleAdmin vulnerability

By24x7support

Jun 6, 2020
CVE-2020-13166: myLittleAdmin vulnerabilityCVE-2020-13166: myLittleAdmin vulnerability

Vulnerability CVE-2020-13166 was discovered in myLittleAdmin

Remove myLittleAdmin from Plesk:

Remove myLittleAdmin from Plesk:

Log in to Plesk
Go to Tools & Settings > Updates > Add/Remove components and uncheck myLittleAdmin:
sql.JPG
Click Continue

As an alternative, to manage MS SQL databases it is recommended to use Microsoft SQL Management studio.

Note: Unlikely software vendor will issue any security patches/updates to address this vulnerability.
We are going to remove the ability to install this vulnerable software using Plesk soon.

Connect to the server via RDP

Delete the following lines from %PLESK_DIR%\MyLittleAdmin\web.config:

<machineKey
validationKey=”5C7EEF6650639D2CB8FAA0DA36AF24452DCF69065F2EDC2C8F2F44C0220BE2E5889CA01A207FC5FCE62D1A5A4F6D2410722261E6A33E77E0628B17AA928039BF”

decryptionKey=”DC47E74EA278F789D2FF0E412AD840A89C10171F408D8AC4″
validation=”SHA1″ />

By 24x7support

Related Post

Plesk Windows

Migrating to MailEnable from another mail server

Jan 30, 2022 24x7support
Plesk Windows

Unable to create a new domain/subdomain or migrate/rename an existing domain/subdomain: DNS record already exists Plesk Windows

Jan 4, 2022 24x7support
Windows

Migrate on-premise active directory to Azure active directory service.

Aug 25, 2021 24x7support

You missed

Uncategorized

Differences Between KVM And OpenVZ

November 10, 2023 Ravindra
Uncategorized

How to Convert Disk From MBR to GPT For OVH Dedicated Server?

January 26, 2023 24x7support
Uncategorized

How to easily encrypt/decrypt a file in Linux with gpg

July 25, 2022 24x7support
cPanel

Some useful commands for Account migrations in Cpanel server

July 25, 2022 24x7support