VYPR
Vendor

Whm Autopilot

Products
1
CVEs
7
Across products
7
Status
Private

Products

1

Recent CVEs

7
  • CVE-2004-1422Dec 31, 2004
    risk 0.04cvss epss 0.08

    WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings.

  • CVE-2004-1420Dec 31, 2004
    risk 0.03cvss epss 0.04

    Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.

  • CVE-2004-1421Dec 31, 2004
    risk 0.03cvss epss 0.04

    Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote…

  • CVE-2024-40427Jan 7, 2025
    risk 0.00cvss epss 0.00

    Stack Buffer Overflow in PX4-Autopilot v1.14.3, which allows attackers to execute commands to exploit this vulnerability and cause the program to refuse to execute

  • CVE-2024-30800Apr 23, 2024
    risk 0.00cvss epss 0.00

    PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly zones by breaching the geofence using flaws in the function.

  • CVE-2005-3687Nov 19, 2005
    risk 0.00cvss epss 0.01

    cancel_account.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter.

  • CVE-2004-2524Dec 31, 2004
    risk 0.00cvss epss 0.02

    clogin.php in Benchmark Designs' WHM AutoPilot 2.4.5 and earlier allows remote attackers to obtain plaintext username and password credentials by using the clogin_e and base64_encode functions to encode the desired user ID in the c parameter, then read the plaintext values in…