CVE-2005-2219

2022-10-0316:22:48

mitre

www.cve.org

hosting controller

hotfix 2.1

authorization

remote users

credit limit

accountactions.asp

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.0%

JSON

Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the CreditLimit parameter in an UpdateCreditLimit action.

References

securitytracker.com/id?1014443