WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings.
Threat-Mapped Scoring
Score: 3.0
Priority: P2 - Serious (High)
-
S1 – Steal Customer Account Information
EPSS
Score: 0.10869
Percentile:
0.93064
CVSS Scoring
CVSS v2 Score: 5.0
Severity:
Affected Products
- cpe:2.3:a:whm:whm_autopilot:2.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:whm:whm_autopilot:2.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:whm:whm_autopilot:2.4.6.5:*:*:*:*:*:*:*
← Back to Home