Description
Multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php and (2) downloads.php, and (3) the report parameter to admin/reports.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ZxH-Labs · textwebappsphp
https://www.exploit-db.com/exploits/18088
References (1)
Core 1
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/18088
Scores
EPSS
0.0118
EPSS Percentile
79.0%
Details
CWE
CWE-22
Status
published
Products (17)
whmcs/whmcompletesolution
3.0.0
whmcs/whmcompletesolution
4.0.0
whmcs/whmcompletesolution
4.0.1
whmcs/whmcompletesolution
4.0.2
whmcs/whmcompletesolution
4.1.0
whmcs/whmcompletesolution
4.1.1
whmcs/whmcompletesolution
4.1.2
whmcs/whmcompletesolution
4.2.0 (4 CPE variants)
whmcs/whmcompletesolution
4.2.1
whmcs/whmcompletesolution
4.3.0
... and 7 more
Published
Dec 14, 2011
Tracked Since
Feb 18, 2026