Flaw Found in Helm Control Panel

  • By theWHIR.com , January 16, 2006

  •   Digg
      Delicious
    submit to reddit  Reddit
      Newsvine
      Stumbleupon
      Twitter
    Facebook

    (close)

    From:
    To:
    Share | Send | Print | Comments (0)

Verio Attracts Resellers with Free Month of VPS Hosting: Companies looking to boost revenues are finding Verio's Free VPS promotion the right fit for getting started as Hosting Reseller.

January 16, 2006 -- (WEB HOST INDUSTRY REVIEW) -- A vulnerability has been found in the Helm Web hosting control panel (helm.webhostautomation.com), according to a report by security organization Secunia (secunia.org). Helm is the flagship hosting automation solution of UK-based software developer WebHost Automation.

According to Secunia, input passed to the "txtEmailAddress" parameter in forgotPassword.asp isn't properly sanitized before being returned to the user.

This flaw, rated less critical, could then be exploited to carry out cross-site scripting attacks. Secunia says the solution is to edit the source code to ensure the input is properly sanitized.

The vulnerability has been reported in version 3.2.8 of Helm and other versions may also be affected.

OLDER:  Interland Buys CNet Hosting Clients | NEWER:  Swiftroute Picks Web Host Equinix IBX

Comment anonymously or log into your WHIR account

Logging in allows enhanced commenting features (such as external linking) in news, features, blogs and more.

User:

Pass:

(reset password)

Don't have an account yet? Register now!


 

Related Content

Most Popular