CVE-2011-5061 - OpenCVE

functions.php in WHMCompleteSolution (WHMCS) 4.0.x through 5.0.x allows remote attackers to trigger arbitrary code execution in the Smarty templating system by submitting a crafted ticket, related to improper handling of characters in the subject field.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Whmcs	Whmcompletesolution

Configuration 1 [-]

OR	cpe:2.3:a:whmcs:whmcompletesolution:4.0.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.0.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.0.2:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.1.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.1.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.1.2:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r1::::::
	cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r2::::::
	cpe:2.3:a:whmcs:whmcompletesolution:4.2.0:beta_r3::::::
	cpe:2.3:a:whmcs:whmcompletesolution:4.2.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.3.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.3.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.4.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.4.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.4.2:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.5.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.5.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:4.5.2:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:5.0.0:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:5.0.1:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:5.0.2:::::::*
	cpe:2.3:a:whmcs:whmcompletesolution:5.0.3:::::::*