Improper access control

2006-04-1301:06:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.1%

JSON

Hosting Controller 6.1 stores forum/db/forum.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as user name and password credentials. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

CPENameOperatorVersion
hosting_controllereq6.1.0-hotfix1.4
hosting_controllereq1.1
hosting_controllereq1.3
hosting_controllereq6.1.0-hotfix1.9
hosting_controllereq6.1.0-hotfix2.8
hosting_controllereq6.1.0-hotfix2.3
hosting_controllereq2002
hosting_controllereq6.1.0-hotfix1.7
hosting_controllereq2002.0.0-rc1
hosting_controllereq1.4.98

Name	Operator	Version
hosting_controller	eq	6.1.0-hotfix1.4
hosting_controller	eq	1.1
hosting_controller	eq	1.3
hosting_controller	eq	6.1.0-hotfix1.9
hosting_controller	eq	6.1.0-hotfix2.8
hosting_controller	eq	6.1.0-hotfix2.3
hosting_controller	eq	2002
hosting_controller	eq	6.1.0-hotfix1.7
hosting_controller	eq	2002.0.0-rc1
hosting_controller	eq	1.4.98