EIP-2026-113411
PRE-CVEWHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113411. PoCs published by Shadman Tanjim.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in WHMCS 5.0, where user-supplied input is not properly sanitized, allowing attackers to inject malicious scripts. The example URL demonstrates how an attacker could exploit this vulnerability by injecting arbitrary code into the 'action' parameter.
Description
WHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting
Exploits (1)
The provided text describes a cross-site scripting (XSS) vulnerability in WHMCS 5.0, where user-supplied input is not properly sanitized, allowing attackers to inject malicious scripts. The example URL demonstrates how an attacker could exploit this vulnerability by injecting arbitrary code into the 'action' parameter.