8 matches found
EUVD-2006-1621
Malware in sbrugna...
Hosting Controller <= 0.6.1 HotFix 2.1 Change Credit Limit Exploit
No description provided by source. Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in AccountActions.asp that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and older Developer url:...
CVE-2006-1620
admin/accounts/AccountActions.asp in Hosting Controller 2002 RC 1 allows remote attackers to modify passwords of other users, probably via an "Update User" ActionType with a modified UserName parameter and the PassCheck parameter set to TRUE. It was later reported that the vulnerability is presen...
CVE-2006-1620
The affected component is Hosting Controller 2002 RC1 (admin/accounts/AccountActions.asp). The vulnerability allows remote attackers to modify passwords for other users by abusing the Update User ActionType with a forged UserName and PassCheck=TRUE. This issue has been observed in 6.1 Hotfix 3.3 ...
CVE-2005-2219
Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the CreditLimit parameter in an UpdateCreditLimit action...
CVE-2005-2219
Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the CreditLimit parameter in an UpdateCreditLimit action...
Hosting Controller <= 0.6.1 HotFix 2.1 Change Credit Limit Exploit
No description provided by source. Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "AccountActions.asp" that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and older Developer url:...
Hosting Controller 0.6.1 HotFix 2.1 - Change Credit Limit
Hosting Controller 0.6.1 HotFix 2.1 - Change Credit Limit Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "AccountActions.asp" that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and...