CVE-2011-4810

EPSS 1.18% · P79 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-4810

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php and (2) downloads.php, and (3) the report parameter to admin/reports.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

WHMCompleteSolution目录遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WHMCS是一套全面支持域名注册解析管理，主机开通管理，VPS开通管理和服务器管理的一站式管理软件。 WHMCompleteSolution (WHMCS) 3.x和4.x 版本中存在多个目录遍历漏洞。远程攻击者可借助templatefile参数和report参数读取任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-4810

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-4810

Please Login to view more intelligence information

http://www.exploit-db.com/exploits/18088exploitx_refsource_EXPLOIT-DB
https://nvd.nist.gov/vuln/detail/CVE-2011-4810

Same Patch Batch · n/a · 2011-12-14 · 37 CVEs total

CVE-2011-4805		SAP Crystal Report Server 2008 ‘pubDBLogon.jsp’跨站脚本漏洞
CVE-2011-3411		Microsoft Publisher无效指针远程代码执行漏洞
CVE-2011-3412		Microsoft Publisher代码注入漏洞
CVE-2011-3413		Microsoft 任意代码执行漏洞
CVE-2011-4800		Serv-U FTP Server目录遍历漏洞
CVE-2011-4801		ASAS ‘akeyActivationLogin.do’ SQL注入漏洞
CVE-2011-4802		Dolibarr 多个SQL注入漏洞
CVE-2011-4803		WordPress WPTouch插件SQL注入漏洞
CVE-2011-4804		Joomla! obSuggest组件目录遍历漏洞
CVE-2011-3410		Microsoft Publisher越界数组索引远程代码执行漏洞
CVE-2011-4806		phpAlbum ‘main.php’ 跨站脚本漏洞
CVE-2011-4807		phpAlbum ‘main.php’目录遍历漏洞
CVE-2011-4808		Joomla! HM Community组件SQL注入漏洞
CVE-2011-4809		Joomla! HM Community组件多个跨站脚本漏洞
CVE-2011-4811		BestShopPro ‘pokaz_podkat.php’ SQL注入漏洞
CVE-2011-4812		BestShopPro ‘nowosci.php’跨站脚本漏洞
CVE-2011-4813		WHMCompleteSolution ‘clientarea.php’目录遍历漏洞
CVE-2011-4814		Dolibarr跨站脚本攻漏洞
CVE-2011-2019		Microsoft Windows不可信搜索路径漏洞
CVE-2011-2741		AAOP 权限许可和访问控制漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-4810

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-4810

I. Basic Information for CVE-2011-4810

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-4810

III. Intelligence Information for CVE-2011-4810

Same Patch Batch · n/a · 2011-12-14 · 37 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-4810

Leave a comment