CVE-2024-40579

Created BySean Mulder : LinkedIn
Last Edited
Tags

Assume the container has been deployed and linked in WHMCS using Virtuozzo Hybrid Server For WHMCS v 1.7.1



File: virtuozzo_hybrid_server_1.7.1_whmcs_opensource/modules/servers/virtuozzoVPS/pages/clientarea.php

Edit container’s hostname in client area:

WHMCS Client Area - Displaying the container

Example Payload of XSS:

Example payload pointing to a specific domain running a tool

That’s it. The script is now stored and will be executed when the module fetches the container’s data.

View from the WHMCS admin portal

There is a lack of sanitisation/ No validation on the POST request: (Variables have been modified)

            $va1 = [
                ...
                'var' => $_POST['var']
                ...
            ];