Critical severity9.9NVD Advisory· Published Mar 11, 2017· Updated May 13, 2026

CVE-2017-6513

Description

The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctly, which allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL.

Affected products

Softaculous/Whmcs Reseller Module
cpe:2.3:a:softaculous:whmcs_reseller_module:2.0.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.virtualizor.com/blog/nvdPatchVendor Advisory
gist.github.com/sedrubal/a83fa22f1091025a5c1a14aabd711ad7nvd

News mentions

No linked articles in our index yet.

cvss	0.643
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000