VYPR

WHMCS

by Whmcompletesolution

CVEs (2)

  • CVE-2012-0693Jan 14, 2012
    risk 0.00cvss epss 0.01

    submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to inject arbitrary code into a subject field via crafted ticket data, a different vulnerability than CVE-2011-5061. NOTE: the vendor disputes this issue, noting that some of the details overlap…

  • CVE-2006-0652Feb 13, 2006
    risk 0.00cvss epss 0.01

    WHMCompleteSolution (WHMCS) before 2.3 assigns incorrect permissions to "resellers", which allows remote authenticated users to perform privileged actions or obtain sensitive information. NOTE: this report is based on a vendor bug report that identified "incorrect permissions."…