CVEDB API

cancel_account.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.8%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2005-3687

Whm Autopilot » Whm Autopilot » Version: 2.4.5

cpe:2.3:a:whm_autopilot:whm_autopilot:2.4.5
Whm Autopilot » Whm Autopilot » Version: 2.4.6

cpe:2.3:a:whm_autopilot:whm_autopilot:2.4.6
Whm Autopilot » Whm Autopilot » Version: 2.4.6.5

cpe:2.3:a:whm_autopilot:whm_autopilot:2.4.6.5
Whm Autopilot » Whm Autopilot » Version: 2.4.7

cpe:2.3:a:whm_autopilot:whm_autopilot:2.4.7
Whm Autopilot » Whm Autopilot » Version: 2.5.0

cpe:2.3:a:whm_autopilot:whm_autopilot:2.5.0
Whm Autopilot » Whm Autopilot » Version: 2.5.20

cpe:2.3:a:whm_autopilot:whm_autopilot:2.5.20