Vulnerabilities > WHM
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-1422 | Remote vulnerability in WHM Autopilot 2.4.5/2.4.6/2.4.6.5 WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings. | 5.0 |
2004-12-31 | CVE-2004-1421 | Remote vulnerability in WHM Autopilot 2.4.5/2.4.6/2.4.6.5 Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code. | 7.5 |
2004-12-31 | CVE-2004-1420 | Remote vulnerability in WHM Autopilot 2.4.5/2.4.6/2.4.6.5 Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter. network whm | 4.3 |