EIP-2026-113411

PRE-CVE

WHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113411. PoCs published by Shadman Tanjim.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in WHMCS 5.0, where user-supplied input is not properly sanitized, allowing attackers to inject malicious scripts. The example URL demonstrates how an attacker could exploit this vulnerability by injecting arbitrary code into the 'action' parameter.

Description

WHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting

Exploits (1)

exploitdb WRITEUP VERIFIED
by Shadman Tanjim · textwebappsphp
https://www.exploit-db.com/exploits/37338

The provided text describes a cross-site scripting (XSS) vulnerability in WHMCS 5.0, where user-supplied input is not properly sanitized, allowing attackers to inject malicious scripts. The example URL demonstrates how an attacker could exploit this vulnerability by injecting arbitrary code into the 'action' parameter.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: WHMCS 5.0
No auth needed
Prerequisites: Access to a vulnerable WHMCS installation
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026