Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtual hosting control system virtual hosting control system 2.4.7.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2174
Multiple cross-site scripting (XSS) vulnerabilities in admin/server_day_stats.php in Virtual Hosting Control System (VHCS) allow remote malicious users to inject arbitrary web script or HTML via the (1) day, (2) month, or (3) year parameter.
Virtual Hosting Control System Virtual Hosting Control System 2.4.7.1
1 EDB exploit
NA
CVE-2006-0683
Cross-site scripting (XSS) vulnerability in Virtual Hosting Control System (VHCS) 2.4.7.1 with v.1 patch and previous versions allows remote malicious users to inject arbitrary web script or HTML via the username, which is recorded in a log file but not properly handled when the ...
Virtual Hosting Control System Virtual Hosting Control System 2.4.7.1 Patch V.1
Virtual Hosting Control System Virtual Hosting Control System
NA
CVE-2007-3988
Session fixation vulnerability in Virtual Hosting Control System (VHCS) 2.4.7.1 and previous versions allows remote malicious users to hijack web sessions by setting the PHPSESSID parameter.
Virtual Hosting Control System Virtual Hosting Control System
NA
CVE-2006-0685
The check_login function in login.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and previous versions does not exit when authentication fails, which allows remote malicious users to gain unauthorized access.
Virtual Hosting Control System Virtual Hosting Control System
1 EDB exploit
NA
CVE-2006-0686
add_user.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and previous versions does not check user privileges when adding a new administrative user, which allows remote malicious users to gain unauthorized access.
Virtual Hosting Control System Virtual Hosting Control System
NA
CVE-2006-0684
change_password.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and previous versions does not verify the old password when a user changes the password, which may allow remote malicious users to gain unauthorized access.
Virtual Hosting Control System Virtual Hosting Control System
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started