PT-2005-2756 · Hosting Controller · Hosting Controller
Publicado
2005-06-01
·
Atualizado
2008-09-05
·
CVE-2005-1788
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Hosting Controller version 6.1 Hotfix 2.0
Description
A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is related to the
jresourceid parameter in the "resellerresources.asp" page.Recommendations
For Hosting Controller version 6.1 Hotfix 2.0, avoid using the
jresourceid parameter in the affected page until the issue is resolved. As a temporary workaround, consider restricting access to the "resellerresources.asp" page to minimize the risk of exploitation.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Hosting Controller