CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1654

Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.021

EPSS Ranking 83.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://isun.shabgard.org/hc3.txt
http://secunia.com/advisories/15271
http://isun.shabgard.org/hc3.txt
http://secunia.com/advisories/15271

Products affected by CVE-2005-1654

Hostingcontroller » Hosting Controller » Version: Any

cpe:2.3:a:hostingcontroller:hosting_controller:*
Hostingcontroller » Hosting Controller » Version: 6.1

cpe:2.3:a:hostingcontroller:hosting_controller:6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1654

Products

Pricing

Contact Us