Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hosting controller hosting controller 1.3 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2002-0773
imp_rootdir.asp for Hosting Controller allows remote malicious users to copy or delete arbitrary files and directories via a direct request to imp_rootdir.asp and modifying parameters such as (1) ftp, (2) owwwPath, and (3) oftpPath.
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.3
1 EDB exploit
10
CVSSv2
CVE-2002-0774
Hosting Controller creates a default user AdvWebadmin with a default password, which could allow remote malicious users to gain privileges if the password is not changed.
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.4b
7.8
CVSSv2
CVE-2006-1764
Hosting Controller 6.1 stores forum/db/forum.mdb under the web document root with insufficient access control, which allows remote malicious users to obtain sensitive information such as user name and password credentials. NOTE: the provenance of this information is unknown; the ...
Hosting Controller Hosting Controller 6.1
Hosting Controller Hosting Controller 6.1 Hotfix 1.4
Hosting Controller Hosting Controller
Hosting Controller Hosting Controller 2002
Hosting Controller Hosting Controller 2002 Rc 1
Hosting Controller Hosting Controller 6.1 Hotfix 2.3
Hosting Controller Hosting Controller 6.1 Hotfix 2.8
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 6.1 Hotfix 1.7
Hosting Controller Hosting Controller 6.1 Hotfix 1.9
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 6.1 Hotfix 2.0
Hosting Controller Hosting Controller 6.1 Hotfix 2.1
7.5
CVSSv2
CVE-2006-5629
Multiple SQL injection vulnerabilities in Hosting Controller 6.1 before Hotfix 3.3 allow remote malicious users to execute arbitrary SQL commands via the ForumID parameter in (1) DisableForum.asp and (2) enableForum.asp. NOTE: it was later reported that the vulnerability is prese...
Hosting Controller Hosting Controller
Hosting Controller Hosting Controller 6.1 Hotfix 2.4
Hosting Controller Hosting Controller 6.1 Hotfix 3.1
Hosting Controller Hosting Controller 6.1 Hotfix 2.2
Hosting Controller Hosting Controller 6.1 Hotfix 2.3
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 6.1 Hotfix 1.7
Hosting Controller Hosting Controller 6.1 Hotfix 1.9
Hosting Controller Hosting Controller 6.1
Hosting Controller Hosting Controller 6.1 Hotfix 1.4
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 6.1 Hotfix 2.0
Hosting Controller Hosting Controller 6.1 Hotfix 2.1
Hosting Controller Hosting Controller 2002
Hosting Controller Hosting Controller 2002 Rc 1
1 EDB exploit
7.5
CVSSv2
CVE-2006-5630
Hosting Controller 6.1 before Hotfix 3.3 allows remote malicious users to (1) delete the virtual directory of an arbitrary site via a modified ForumID parameter in a disableforum action in DisableForum.asp and (2) create an arbitrary forum virtual directory via an empty ForumID p...
Hosting Controller Hosting Controller 2002 Rc 1
Hosting Controller Hosting Controller 6.1
Hosting Controller Hosting Controller 6.1 Hotfix 2.4
Hosting Controller Hosting Controller 6.1 Hotfix 3.1
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 6.1 Hotfix 2.0
Hosting Controller Hosting Controller 6.1 Hotfix 2.1
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 2002
Hosting Controller Hosting Controller 6.1 Hotfix 2.2
Hosting Controller Hosting Controller 6.1 Hotfix 2.3
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 6.1 Hotfix 1.4
Hosting Controller Hosting Controller 6.1 Hotfix 1.7
Hosting Controller Hosting Controller 6.1 Hotfix 1.9
Hosting Controller Hosting Controller
7.5
CVSSv2
CVE-2002-0212
The login for Hosting Controller 1.1 up to and including 1.4.1 returns different error messages when a valid or invalid user is provided, which allows remote malicious users to determine the existence of valid usernames and makes it easier to conduct a brute force attack.
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.4.1
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.4b
6.4
CVSSv2
CVE-2002-0772
Directory traversal vulnerability in dsnmanager.asp for Hosting Controller allows remote malicious users to read arbitrary files and directories via a .. (dot dot) in the RootName parameter.
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4
Hosting Controller Hosting Controller 1.4.1
1 EDB exploit
5.8
CVSSv2
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
5
CVSSv2
CVE-2005-0695
The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and previous versions allows remote malicious users to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field.
Hosting Controller Hosting Controller 6.1 Hotfix 1.4
Hosting Controller Hosting Controller 6.1 Hotfix 1.7
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 6.1
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4.1
5
CVSSv2
CVE-2005-0694
Hosting Controller 6.1 Hotfix 1.7 and previous versions stores log files under the web root, which allows remote malicious users to obtain sensitive information via a direct request to HCDiskQuotaService.csv.
Hosting Controller Hosting Controller 6.1 Hotfix 1.4
Hosting Controller Hosting Controller 6.1 Hotfix 1.7
Hosting Controller Hosting Controller 1.4b
Hosting Controller Hosting Controller 6.1
Hosting Controller Hosting Controller 1.1
Hosting Controller Hosting Controller 1.3
Hosting Controller Hosting Controller 1.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »