| 제목 | Lagom WHMCS Template ≤ 2.4.2 Denial of Service |
|---|
| 설명 | Lagom WHMCS Template Client-Side Denial of Service Vulnerability
The Lagom WHMCS Template bundles an outdated DataTables library containing a critical Denial of Service (DoS) vulnerability.
DataTables Memory Exhaustion: Rapid successive DataTable initializations with large datasets bypass memory bounds checking. The library processes massive row/cell string allocations without garbage collection limits or iteration caps, consuming gigabytes of RAM within seconds and forcing complete browser termination.
The vulnerability requires only JavaScript execution capability and results in immediate, permanent client application denial of service. Attackers can trigger crashes via console access, injected scripts, or chained XSS payloads. |
|---|
| 원천 | ⚠️ https://github.com/devsamuelsantiago/lagom-whmcs-dos-poc |
|---|
| 사용자 | s4nnty (UID 95917) |
|---|
| 제출 | 2026. 03. 28. PM 03:50 (28 날 ago) |
|---|
| 모더레이션 | 2026. 04. 19. PM 03:57 (22 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 358236 [Lagom WHMCS Template 까지 2.4.2 Datatables 서비스 거부] |
|---|
| 포인트들 | 20 |
|---|