| タイトル | Lagom WHMCS Template ≤ 2.4.2 Denial of Service |
|---|
| 説明 | Lagom WHMCS Template Client-Side Denial of Service Vulnerability
The Lagom WHMCS Template bundles an outdated DataTables library containing a critical Denial of Service (DoS) vulnerability.
DataTables Memory Exhaustion: Rapid successive DataTable initializations with large datasets bypass memory bounds checking. The library processes massive row/cell string allocations without garbage collection limits or iteration caps, consuming gigabytes of RAM within seconds and forcing complete browser termination.
The vulnerability requires only JavaScript execution capability and results in immediate, permanent client application denial of service. Attackers can trigger crashes via console access, injected scripts, or chained XSS payloads. |
|---|
| ソース | ⚠️ https://github.com/devsamuelsantiago/lagom-whmcs-dos-poc |
|---|
| ユーザー | s4nnty (UID 95917) |
|---|
| 送信 | 2026年03月28日 15:50 (28 日 ago) |
|---|
| モデレーション | 2026年04月19日 15:57 (22 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 358236 [Lagom WHMCS Template 迄 2.4.2 Datatables サービス拒否] |
|---|
| ポイント | 20 |
|---|