6.8 Medium
AI Score
Confidence
Low
0.085 Low
EPSS
Percentile
94.5%
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.
isun.shabgard.org/hc3.txt
secunia.com/advisories/15271