Описание
The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctly, which allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL.
Уязвимые конфигурации
Конфигурация 1Версия до 2.9.0.6 (включая)
Одновременно
cpe:2.3:a:softaculous:whmcs_reseller_module:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:softaculous:virtualizor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00807
Низкий
9.9 Critical
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-275
Связанные уязвимости
CVSS3: 9.9
github
больше 3 лет назад
The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctly, which allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL.
EPSS
Процентиль: 74%
0.00807
Низкий
9.9 Critical
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-275