PT-2026-25713 · Lagom · Whmcs Template
S4Nnty
+1
·
Published
2026-03-16
·
Updated
2026-03-16
·
CVE-2026-4239
CVSS v2.0
4.0
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Lagom WHMCS Template versions through 2.3.7
Description
A flaw exists within the Datatables component of Lagom WHMCS Template. This issue involves the improper control of modification of object prototype attributes, potentially allowing for remote attacks. The details of the vulnerable function are not specified. The exploit for this issue has been publicly released, and the vendor was notified but did not respond.
Recommendations
Update Lagom WHMCS Template to a version beyond 2.3.7.
Exploit
Fix
Prototype Pollution
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Whmcs Template