RSS   Vulnerabilities for 'Mini hosting panel'   RSS

2010-04-27
 
CVE-2009-4826

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in hosting/admin_ac.php in ScriptsEz Mini Hosting Panel allows remote attackers to hijack the authentication of administrators for requests that alter administrative settings via a cp action.

 
2009-02-06
 
CVE-2008-6090

CWE-22
 

 
Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote attackers to read arbitrary local files via a .. (dot dot) in the dir parameter in a view action.

 

 >>> Vendor: Scriptsez 15 Products
Cute guestbook
Ez ringtone manager
Random php quote
Smart php subscriber
Power editor
Freeze greetings
Easy image downloader
Mini hosting panel
Ez php comment
Ultimate poll
Ez cart
Ez blog
Ez poll hoster
Good/bad vote
Ez album


Copyright 2024, cxsecurity.com

 

Back to Top