Hosting Controller 6.1 Hotfix 1.4, and possibly other versions, allows remote malicious users to view arbitrary directories by specifying the target pathname in the FilePath parameter to (1) Statsbrowse.asp or (2) Generalbrowse.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hosting controller hosting controller 6.1_hotfix_1.4 |
||
hosting controller hosting controller 6.1 |