Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4810

Опубликовано: 14 дек. 2011
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

Multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php and (2) downloads.php, and (3) the report parameter to admin/reports.php.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:whmcs:whmcompletesolution:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r1:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r2:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r3:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.3.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.4.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.4.2:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.5.0:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.5.1:*:*:*:*:*:*:*
cpe:2.3:a:whmcs:whmcompletesolution:4.5.2:*:*:*:*:*:*:*

EPSS

Процентиль: 81%
0.01619
Низкий

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

github логотип

GHSA-p24r-jj36-wqr5

github
больше 3 лет назад

Multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php and (2) downloads.php, and (3) the report parameter to admin/reports.php.

EPSS

Процентиль: 81%
0.01619
Низкий

5 Medium

CVSS2

Дефекты

CWE-22