CVEs-PoC/2007/CVE-2007-6503.md

### [CVE-2007-6503](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6503)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Multiple unspecified vulnerabilities in Hosting Controller 6.1 Hot fix 3.3 and earlier allow remote authenticated users to (1) import an arbitrary plan via a request to hosting/importhostingplans.asp; or (2) change an arbitrary plan via a request to hosting/AutoSignUpPlans.asp with the (a) save, (b) 30, and (c) d_30 parameters.

### POC

#### Reference
- https://www.exploit-db.com/exploits/4730

#### Github
No PoCs found on GitHub currently.