CVE-2008-6950

Multiple SQL injection vulnerabilities in login.asp in Bankoi WebHosting Control Panel 1.20 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password field...

CVE-2008-6950

CVE-2008-6950 describes multiple SQL injection vulnerabilities in the login.asp of Bankoi WebHosting Control Panel 1.20. The issues allow remote attackers to inject SQL via the (1) username or (2) password fields, potentially leading to arbitrary SQL execution. Affected component is the login han...

Horde Webmail file inclusion proof of concept & patch.

Horde 3.1.6 arbitrary file inclusion vulnerability, proof of concept & patch. A severe security vulnerability affects any unix distribution running version 3.1.6 of the Horde webmail client included in most popular webhosting control panels. All previous versions are also affected and it is...

PSOFT H-Sphere Cross Site Scripting Vulnerabilities

-------------------- Product: PSOFT H-Sphere Hosting Control Panel Vendor: PSOFT Positive Software Corporation Versions: VULNERABLE - 2.3.x - 2.2.x - 2.1.x - 2.0.x NOT VULNERABLE - ? --------------------- Description: H-Sphere is a scalable multiserver webhosting control panel, which provides...