Arbitrary Account Cancellation Vulnerability in WHM AutoPilot 2.5.30 and Earlier

Arbitrary Account Cancellation Vulnerability in WHM AutoPilot 2.5.30 and Earlier

CVE-2005-3687 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

cancel_account.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter.

Learn more about our Web Application Penetration Testing UK.