CVE-2017-6513

2017-03-1106:46:00

mitre

www.cve.org

AI Score

Confidence

High

EPSS

0.002

Percentile

59.1%

JSON

The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctly, which allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL.

References

www.virtualizor.com/blog/?p=1551

gist.github.com/sedrubal/a83fa22f1091025a5c1a14aabd711ad7