In-Reply-To: <20020713151412.10889.qmail@mail.securityfocus.com> Same security hole in Version 1.4 I have tested this vulnerability in version 1.4 of hosting controller and changed the Administrator password in the same way as described. I applied the patch supplied and this successfully prevented reproduction of the vulnerability.
