A vulnerability CVE-2020-13166 was discovered in myLittleAdmin: https://ssd-disclosure.com/ssd-advisory-mylittleadmin-preauth-rce/ due to which if myLittleAdmin is installed, an unauthenticated remote attacker can run arbitrary code and system is compromised. At this moment, it is unlikely that the software vendor will issue any security patches/updates to address this vulnerability. Hence, we are going to remove myLittleAdmin from Plesk immediately.
As an alternative, to manage MS SQL databases it is recommended to use SQL Server Management Studio (SSMS)
SSMS 18.5 is the latest general availability (GA) version of SSMS. It can be downloaded HERE
SMSS Tutorial is available HERE.
Monday, June 8, 2020