Softaculous · Softaculous Virtualizor · CVE-2017-6513
**Name of the Vulnerable Software and Affected Versions**
WHMCS Reseller Module V2 version 2.0.2
Softaculous Virtualizor versions prior to 2.9.1.0
**Description**
The issue allows remote authenticated users to control other virtual machines managed by Virtualizor by accessing a modified URL, due to incorrect user verification in the WHMCS Reseller Module V2.
**Recommendations**
For WHMCS Reseller Module V2 version 2.0.2, update Softaculous Virtualizor to version 2.9.1.0 or later.
For Softaculous Virtualizor versions prior to 2.9.1.0, update to version 2.9.1.0 or later.