46 matches found
CVE-2011-4810
Multiple directory traversal vulnerabilities in WHMCompleteSolution WHMCS 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to 1 submitticket.php and 2 downloads.php, and 3 the report parameter to admin/reports.php...
CVE-2011-4813
Directory traversal vulnerability in clientarea.php in WHMCompleteSolution WHMCS 3.x.x allows remote attackers to read arbitrary files via an invalid action and a ../ dot dot slash in the templatefile parameter...
CVE-2011-4810
CVE-2011-4810 describes multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x. The issue allows remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php, (2) downloads.php, and via the report parameter to admin/reports.php. ...
WHMCompleteSolution 3.x/4.x - Multiple Vulnerabilities
$b0x WHMCS WHMCompleteSolution 3.x / 4.x Multiple Vulnerability ! $b0x ZxH-Labs $b0x 1st-NOV-11 $b0x Www.Sec4ever.coM $b0x WH-03 On Windows IIS 6.0 ======================================================== b0x@1337b0x:/b0x/Exploits/WebAPP whoami ZxH-Labs | Www.Sec4ever.coM...
WHMCompleteSolution (WHMCS) 3.x - clientarea.php Local File Disclosure
WHMCompleteSolution WHMCS 3.x - clientarea.php Local File Disclosure Title : WHMCS clientarea.php Local File Disclosure Author : Red Virus [email protected] Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 11/04/2011 Version : 3.X.x Tested on : linux+apache Homepage : www.alm3refh.com...
WHMCompleteSolution 'cart.php' Local File Disclosure Vulnerability
WHMCompleteSolution is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on computers running the vulnerable application. Th...
WHMCompleteSolution (cart.php)local file disclosure flaws and fixes-vulnerability warning-the black bar safety net
Title: WHMCompleteSolution cart.php Local File Disclosure Author: Lagripe-Dz www.badguest.cn Developer: WHMCS WHMCompleteSolution http://whmcs.com/ Affected version: 3. x. x , 4.0. x Test platform: linux+apache Defect file: cart.php --------- Code analysis: --------- if $a == "add" $templatefile...
WHMCompleteSolution (WHMCS) 3.x < 4.0.x - 'cart.php' Local File Disclosure
Title : WHMCompleteSolution cart.php Local File Disclosure Author : Lagripe-Dz Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 10/01/2011 Version : 3.x.x , 4.0.x Tested on : linux+apache ================================================================ Vuln file: cart.php...
WHMCompleteSolution (WHMCS) 3.x 4.0.x - cart.php Local File Disclosure
WHMCompleteSolution WHMCS 3.x 4.0.x - cart.php Local File Disclosure Title : WHMCompleteSolution cart.php Local File Disclosure Author : Lagripe-Dz Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 10/01/2011 Version : 3.x.x , 4.0.x Tested on : linux+apache...
WHMCompleteSolution (cart.php) Local File Disclosure
Exploit for php platform in category web applications Title : WHMCompleteSolution cart.php Local File Disclosure Author : Lagripe-Dz Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 10/01/2011 Version : 3.x.x , 4.0.x Tested on : linux+apache...
CVE-2010-1702
SQL injection vulnerability in submitticket.php in WHMCompleteSolution WHMCS 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter...
CVE-2010-1702
CVE-2010-1702 : Affected software is WHMCompleteSolution (WHMCS) 4.2. The vulnerability is a SQL injection in submitticket.php via the deptid parameter, allowing remote attackers to execute arbitrary SQL commands. This can impact confidentiality, integrity, and availability as described by the NV...
WHMCompleteSolution (WHMCS) Control 2 - 'announcements.php' SQL Injection
Software: WHMCS control 2 Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS or' announcements.php Off. site: www.MiXaTy.com Author Author: Islam DefenDers Date: 2.5.2010 Contact: email: [email protected] Sql Injection Exploit:...
WHMCS Control 2 (announcements.php) SQL Injection Vulnerabilities
Exploit for php platform in category web applications ================================================================= WHMCS Control 2 announcements.php SQL Injection Vulnerabilities ================================================================= Software: WHMCS control 2 Sql Injection...
WHMCompleteSolution (WHMCS) Control 2 - announcements.php SQL Injection
WHMCompleteSolution WHMCS Control 2 - announcements.php SQL Injection Software: WHMCS control 2 Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS or' announcements.php Off. site: www.MiXaTy.com Author Author: Islam DefenDers Date:...
WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection
=Info======================================================================= Software: WHMCS control WHMCompleteSolution Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS Off. site: www.MiXaTy.com...
WHMCompleteSolution Cross Site Scripting
======================================================================================== | Title : WHMCompleteSolution Cross Site Scripting in URI Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | |...
WHMCompleteSolution XSS in URI Vulnerability
No description provided by source. ======================================================================================== | Title : WHMCompleteSolution Cross Site Scripting in URI Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El...
WHMCompleteSolution CMS - SQL Injection
ALGERIAN HACKER - NORTH-AFRICA SECURITY TEAM - ! WHMCompleteSolution CMS sql Injection Vulnerability ! Author : Dr.0rYX and Cr3w-DZ ! MAIL : [email protected] & [email protected] / Software Information + Vendor : http://www.siamhostserver.com/whmcs/ + script : WHMCompleteSolution CMS + Download :...
WHMCompleteSolution CMS - SQL Injection
WHMCompleteSolution CMS - SQL Injection ALGERIAN HACKER - NORTH-AFRICA SECURITY TEAM - ! WHMCompleteSolution CMS sql Injection Vulnerability ! Author : Dr.0rYX and Cr3w-DZ ! MAIL : [email protected] & [email protected] / Software Information + Vendor : http://www.siamhostserver.com/whmcs/ + script :...