Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
positive software h-sphere 2.4.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6382
The control panel for Positive Software H-Sphere prior to 2.5.0 RC3 creates log files in a user's directory with insecure permissions, which allows local users to append log data to arbitrary files via a symlink attack. NOTE: The provenance of this information is unknown; th...
Positive Software H-sphere 2.4.3
NA
CVE-2006-0193
Cross-site scripting (XSS) vulnerability in the Hosting Control Panel (psoft.hsphere.CP) in Positive Software H-Sphere 2.4.3 Patch 8 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter in a login action.
Positive Software H-sphere 2.4.1 Patch 1
Positive Software H-sphere 2.4.1 Patch 2
Positive Software H-sphere 2.4.1 Patch 3
Positive Software H-sphere 2.4.2 Beta 2
Positive Software H-sphere 2.4.1
Positive Software H-sphere 2.4.2
Positive Software H-sphere 2.4.2 Beta 1
Positive Software H-sphere 2.4.2 Patch 5
Positive Software H-sphere 2.4.2 Rc1
Positive Software H-sphere 2.4.3 Patch 3
Positive Software H-sphere 2.4.3 Patch 4
Positive Software H-sphere 2.4.3 Patch 5
Positive Software H-sphere 2.4.1 Patch 6
Positive Software H-sphere 2.4.1 Patch 7
Positive Software H-sphere 2.4.2 Patch 3
Positive Software H-sphere 2.4.2 Patch 4
Positive Software H-sphere 2.4.3 Patch 1
Positive Software H-sphere 2.4.3 Patch 2
Positive Software H-sphere 2.4.3 Rc2
Positive Software H-sphere 2.4.2 Beta 3
Positive Software H-sphere 2.4.2 Rc2
Positive Software H-sphere 2.4.3
NA
CVE-2005-1606
H-Sphere Winbox 2.4.2 and 2.4.3 RC1 stores sensitive information such as username and password in plaintext in world-readable log files, which allows local users to gain privileges.
Positive Software H-sphere Winbox 2.4.2 Patch 4
Positive Software H-sphere Winbox 2.4.3 Rc1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started