Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WHMCompleteSolution (WHMCS) before 2.3 assigns incorrect permissions to "resellers", which allows remote authenticated users to perform privileged actions or obtain sensitive information. NOTE: this report is based on a vendor bug report that identified "incorrect permissions." However, the vendor did not label it a security issue, and there was no statement regarding whether or not the permissions were actually more permissive than intended. If in fact the permissions were more restrictive than intended, then this would be a functional problem but not a vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WHMCompleteSolution Resellers组信息泄露漏洞
Vulnerability Description
WHMCompleteSolution (WHMCS) 2.3之前的版本为"reseller"分配了错误权限,从而使得远程认证用户可以执行授权操作或获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A