CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0695

The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.3%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2005-0695

Hosting Controller » Hosting Controller » Version: 1.1

cpe:2.3:a:hosting_controller:hosting_controller:1.1
Hosting Controller » Hosting Controller » Version: 1.3

cpe:2.3:a:hosting_controller:hosting_controller:1.3
Hosting Controller » Hosting Controller » Version: 1.4.1

cpe:2.3:a:hosting_controller:hosting_controller:1.4.1
Hosting Controller » Hosting Controller » Version: 1.4b

cpe:2.3:a:hosting_controller:hosting_controller:1.4b
Hosting Controller » Hosting Controller » Version: 6.1

cpe:2.3:a:hosting_controller:hosting_controller:6.1
Hosting Controller » Hosting Controller » Version: 6.1_hotfix_1.4

cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_1.4
Hosting Controller » Hosting Controller » Version: 6.1_hotfix_1.7

cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0695

Products

Pricing

Contact Us