CVE-2010-1702

Name of the Vulnerable Software and Affected Versions WHMCS version 4.2

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is related to the deptid parameter in the submitticket.php file.

Recommendations For WHMCS version 4.2, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the submitticket.php file to minimize the risk of exploitation. Avoid using the deptid parameter in the affected file until the issue is resolved.