Vulnerabilities

CVE-2007-6496

by Fred · 20/12/2007

Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote attackers to register arbitrary users via a request to hosting/addsubsite.asp with the loginname and password parameters set, when preceded by certain requests to hosting/default.asp and hosting/selectdomain.asp, a related issue to CVE-2005-1654.

Date published : 2007-12-20

http://www.securityfocus.com/bid/26862

http://www.securityfocus.com/archive/1/485028/100/0/threaded

Similar

Tags: Cybersecurity Alert