The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and previous versions allows remote malicious users to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hosting controller hosting controller 6.1_hotfix_1.4 |
||
hosting controller hosting controller 6.1_hotfix_1.7 |
||
hosting controller hosting controller 1.4b |
||
hosting controller hosting controller 6.1 |
||
hosting controller hosting controller 1.1 |
||
hosting controller hosting controller 1.3 |
||
hosting controller hosting controller 1.4.1 |