Vulnerabilities > Whmcs > Whmcs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-05-13 | CVE-2013-3536 | SQL Injection vulnerability in Whmcs Group PAY SQL injection vulnerability in the gp_LoadUserFromHash function in functions_hash.php in the Group Pay module 1.5 and earlier for WHMCS allows remote attackers to execute arbitrary SQL commands via the hash parameter. | 7.5 |
| 2010-05-04 | CVE-2010-1702 | SQL Injection vulnerability in Whmcs 4.2 SQL injection vulnerability in submitticket.php in WHMCompleteSolution (WHMCS) 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter. | 7.5 |