Alstrasoft Webhost Directory — known CVE vulnerabilities
Every CVE whose affected-product data names Alstrasoft Webhost Directory, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2006-6818 — CVSS 7.5 (high): AlstraSoft Web Host Directory allows remote attackers to bypass authentication and change the admin password via a direct request to…
CVE-2008-5650 — CVSS 7.5 (high): SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL…
CVE-2006-2616 — CVSS 7.5 (high): SQL injection vulnerability in the search script in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows…
CVE-2006-6819 — CVSS 6.4 (medium): AlstraSoft Web Host Directory stores sensitive information under the web root with insufficient access control, which allows remote…
CVE-2006-6817 — CVSS 5.0 (medium): AlstraSoft Web Host Directory allows remote attackers to obtain sensitive information by requesting any invalid URI, which reveals the path…
CVE-2006-2617 — CVSS 5.0 (medium): (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote attackers to obtain the installation path via…