Описание
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.
Ссылки
- Broken LinkExploitPatch
- Broken Link
- Broken LinkExploitPatch
- Broken Link
Уязвимые конфигурации
Конфигурация 1Версия до 6.1 (исключая)
Одно из
cpe:2.3:a:hostingcontroller:hosting_controller:*:*:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:-:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.0:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.1:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.2:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.3:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.4:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.5:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.6:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.7:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.8:*:*:*:*:*:*
cpe:2.3:a:hostingcontroller:hosting_controller:6.1:hotfix1.9:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02121
Низкий
7.5 High
CVSS2
Дефекты
CWE-425
Связанные уязвимости
github
почти 4 года назад
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.
EPSS
Процентиль: 84%
0.02121
Низкий
7.5 High
CVSS2
Дефекты
CWE-425