46 matches found
WHMCompleteSolution CMS - SQL Injection
ALGERIAN HACKER - NORTH-AFRICA SECURITY TEAM - ! WHMCompleteSolution CMS sql Injection Vulnerability ! Author : Dr.0rYX and Cr3w-DZ ! MAIL : [email protected] & [email protected] / Software Information + Vendor : http://www.siamhostserver.com/whmcs/ + script : WHMCompleteSolution CMS + Download :...
Design/Logic Flaw
WHMCompleteSolution WHMCS before 2.3 assigns incorrect permissions to "resellers", which allows remote authenticated users to perform privileged actions or obtain sensitive information. NOTE: this report is based on a vendor bug report that identified "incorrect permissions." However, the vendor...
CVE-2005-4235
Cross-site scripting XSS vulnerability in knowledgebase.php in WHMCompleteSolution 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameters...
CVE-2005-4235
CVE-2005-4235 describes a cross-site scripting (XSS) vulnerability in knowledgebase.php of WHMCompleteSolution 2.1 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the search parameters, affecting the affected WHMCompleteSolution product. No remediation det...
CVE-2005-4235
Cross-site scripting XSS vulnerability in knowledgebase.php in WHMCompleteSolution 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameters...
WHMCompleteSolution XSS vuln.
WHMCompleteSolution XSS vuln. Vuln. dicovered by : r0t Date: 14 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/whmcompletesolution-xss-vuln.html vendor:http://www.whmcs.com/ affected version:2.1 and prior Product Description: WHMCompleteSolution has the features that all web hosts...