Unrated severityNVD Advisory· Published May 26, 2006· Updated Apr 16, 2026

CVE-2006-2617

Description

(1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote attackers to obtain the installation path via an invalid entry in the Username field on the login page, which causes the path to be displayed in an SQL error. NOTE: this issue might be resultant from SQL injection.

Affected products

Alstrasoft/Webhost Directory
cpe:2.3:a:alstrasoft:webhost_directory:1.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/20276nvdVendor Advisory
secunia.com/advisories/20278nvdVendor Advisory
securityreason.com/securityalert/955nvd
www.securityfocus.com/archive/1/434912/100/0/threadednvd
www.sitepoint.com/forums/showthread.phpnvd
www.vupen.com/english/advisories/2006/1972nvd
www.vupen.com/english/advisories/2006/1973nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26656nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26661nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000