• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Hosting Controller Unauthorized Access Vulnerability

Hosting Controller is prone to an unauthorized access vulnerability.

An attacker can manipulate the application to navigate beyond their folder and view the folders for all resellers and Web admin utilizing this instance of the Hosting Controller application. This would result in information disclosure and a loss of confidentiality. Information obtained may also aid in further attacks.