Unrated severityNVD Advisory· Published Jan 14, 2012· Updated Apr 29, 2026

CVE-2012-0693

Description

submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to inject arbitrary code into a subject field via crafted ticket data, a different vulnerability than CVE-2011-5061. NOTE: the vendor disputes this issue, noting that some of the details overlap CVE-2011-5061, but that it "says it affects V5.0.3, and the submitticket.php file, both of which are wrong.

Affected products

Whmcs/Whmcompletesolution
cpe:2.3:a:whmcs:whmcompletesolution:5.03:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.oscommerceuniversity.com/lounge/index.php/board%2C23.0.htmlnvdURL Repurposed
www.oscommerceuniversity.com/lounge/index.php/topic%2C1209.0.htmlnvdURL Repurposed

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000