Whmcs : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in the gp_LoadUserFromHash function in functions_hash.php in the Group Pay module 1.5 and earlier for WHMCS allows remote attackers to execute arbitrary SQL commands via the hash parameter.
Max CVSS
7.5
EPSS Score
0.12%
Published
2013-05-13
Updated
2013-05-14
SQL injection vulnerability in submitticket.php in WHMCompleteSolution (WHMCS) 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2010-05-04
Updated
2017-08-17
2 vulnerabilities found