Attackers are exploiting a vulnerability in a popular website configuration tool (Horde/IMP Plesk) to gain remote access to web servers, said Cisco researchers in an advisory.