CVE-2026-6601

MEDIUM CVSS 4.3 View on NVD ↗

Description

A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown function of the component Datatables. The manipulation leads to resource consumption. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

References

https://github.com/devsamuelsantiago/lagom-whmcs-dos-poc
https://vuldb.com/submit/791943
https://vuldb.com/vuln/358236
https://vuldb.com/vuln/358236/cti

Published: Apr 20, 2026 04:16 UTC Modified: Apr 20, 2026 04:16 UTC