Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
whm whm autopilot 2.4.6
whm whm autopilot 2.4.6.5
whm whm autopilot 2.4.5

WHMAutoPilot Multiple Vulnerabilities Vendor: Benchmark Designs, LLC Product: WHMAutoPilot Version: <= 2465 Website: wwwwhmautopilotcom/ BID: 12119 CVE: CVE-2004-1420 CVE-2004-1421 CVE-2004-1422 OSVDB: 12693 12694 12695 12696 12697 SECUNIA: 13673 PACKETSTORM: 35559 Description: Started by a webhost looking for more out of a ...

NVD-CWE-Other http://www.gulftech.org/?node=research&article_id=00059-12272004 http://www.whmautopilot.com/forum/lofiversion/index.php/t6785.html http://www.securityfocus.com/bid/12119 http://secunia.com/advisories/13673 http://www.osvdb.org/12695 http://securitytracker.com/id?1012707 http://marc.info/?l=bugtraq&m=110425620105529&w=2 http://marc.info/?l=bugtraq&m=110451997904494&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18699 https://nvd.nist.gov https://www.exploit-db.com/exploits/43818/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1421

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect