6.9 Medium
AI Score
Confidence
Low
0.016 Low
EPSS
Percentile
87.4%
Hosting Controller 6.1 HotFix 2.0 and earlier allows remote attackers to steal passwords and gain privileges via a modified emailaddress parameter in an updateprofile action for UserProfile.asp.
securitytracker.com/id?1014062