295 matches found
CVE-2005-1654
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set...
CVE-2019-12323
The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...
CVE-2019-12323
The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...
Code injection
The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...
CVE-2019-12323
The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...
CVE-2019-12323
The CVE-2019-12323 entry concerns Hosting Controller HC10 HC.Server Service 10.14. Affected software: HC10 HC.Server Service 10.14. Vulnerability: Remote Invalid Pointer Write that can cause a DoS if the service is reachable (port 8794). Root cause: invalid pointer write within HC.Server. Impact:...
HC10 HC.Server Service 10.14 - Remote Invalid Pointer Write
HC10 HC.Server Service 10.14 - Remote Invalid Pointer Write + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/HC10-HC.SERVER-10.14-REMOTE-INVALID-POINTER-WRITE.txt + ISR: ApparitionSec Vendor www.hostingcontroller.com Produ...
Hosting Controller 1.x DSNManager Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4759/info Hosting Controller is an application which consolidates all hosting tasks into one interface. Hosting Controller runs on Microsoft Windows operating systems. The DSNManager script does not sufficiently filter...
Hosting Controller 7C FolderManager.ASPX Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21786/info Hosting Controller is prone to a directory-traversal vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to modify or retrieve arbitrary file...
Hosting Controller 1.x/6.1 - Multiple Information Disclosure Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12748/info Hosting Controller is reported prone to multiple information disclosure vulnerabilities. These issues can allow an attacker to disclose sensitive information, which may be used to carry out further attacks...
Hosting Controller 6.1 resellerresources.asp jresourceid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13806/info Hosting Controller is reported prone to multiple vulnerabilities. These issues can allow an attacker gain unauthorized access to data and carry out SQL injection attacks. These issues reportedly affect Hosting...
Hosting Controller 1.4 Import Root Directory Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4761/info Hosting Controller is an application which consolidates all hosting tasks into one interface. Hosting Controller runs on Microsoft Windows operating systems. The Import Root Directory improotdir.asp script does...
Hosting Controller 1.x Error.ASP Cross-site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18933/info Hosting Controller is prone to a cross-site scripting vulnerability because it fails to sanitize input before displaying it to users of the application. An attacker may leverage this issue to have arbitrary...
Hosting Controller <= 6.1 Hotfix 3.2 - Remote Unauthenticated Vulns
No description provided by source. Hosting Controller 6.1 Hotfix = 3.2 Multi Vuln. SQLInjection, Command Injection ------- KAPDA::59 - Hosting Controller 6.1 Hotfix = 3.2 Vendor: Hosting Controller Vendor URL: www.hostingcontroller.com Solution: Hotfix 3.3 Found Date: 7/1/2006 Release Date:...
Hosting Controller 6.1 plandetails.asp Information Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/13806/info Hosting Controller is reported prone to multiple vulnerabilities. These issues can allow an attacker gain unauthorized access to data and carry out SQL injection attacks. These issues reportedly affect Hosting...
Hosting Controller <= 0.6.1 Hotfix 1.4 Directory Browsing Vulnerability
No description provided by source. Advisory Information ------------------------- Software Package : Hosting Controller Vendor Homepage : http://www.hostingcontroller.com Platforms : Windows based servers Vulnerable Versions : All version Tested on: v.6.1 Hotfix 1.4 Vendor Contacted : 12/5/2004...
Hosting Controller <= 0.6.1 HotFix 2.1 Change Credit Limit Exploit
No description provided by source. Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in AccountActions.asp that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and older Developer url:...
Hosting Controller <= 0.6.1 Unauthenticated User Registeration (3rd)
No description provided by source. !-- Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in UserProfile.asp that an authenticated user can change other's profiles. Why is it dangerous: a user can change other's email address and then us...
Hosting Controller <= 6.1 HotFix 2.2 Add Domain without Quota Exploit
No description provided by source. !-- Change url /str0ke -- form method=post name=addform action=http://url/admin/iis/IISActions.asp?ActionType=AddSite&hostcustid=1&hostingplans=1 table tr class=looplistingDark td width=19% class=ContentsWebsite Name : /td td width=73% class=contents input...
hosting controller 6.1 hot fix <= 3.3 - Multiple Vulnerabilities
No description provided by source. Title: Multiple Security Bugs In Hosting Controller Critical: Extremely critical Impact: Full system administrator access Vendor: Hosting Controller Version: 6.1 Hot fix = 3.3 Vendor URL: www.hostingcontroller.com Solution: N/A From company - There is temporary...