CVE-2012-0693

Name: CVE-2012-0693
Creator: NVD / NIST
Published: 2012-01-14T03:57:27.213+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.02%

Last modified Jun 16, 2026

CVE-2012-0693 is a vulnerability of currently unknown severity. submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to inject arbitrary code into a subject field via crafted ticket data, a different vulnerability than CVE-2011-5061. NOTE: the vendor disputes this issue, noting that some of the details overlap CVE-2011-5061, but that it "says it affects V5.0.3, and the submitticket.php file, both of which are wrong.. EPSS estimates a 1.02% chance of exploitation in the next 30 days.

Description

submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to inject arbitrary code into a subject field via crafted ticket data, a different vulnerability than CVE-2011-5061. NOTE: the vendor disputes this issue, noting that some of the details overlap CVE-2011-5061, but that it "says it affects V5.0.3, and the submitticket.php file, both of which are wrong.

Metrics

EPSS Probability

1.02%

59.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-94

Affected Software

Vendor	Product	Versions
Whmcs	Whmcompletesolution	5.03

References

http://www.oscommerceuniversity.com/lounge/index.php/board%2C23.0.htmlURL Repurposed
http://www.oscommerceuniversity.com/lounge/index.php/topic%2C1209.0.htmlURL Repurposed
http://www.oscommerceuniversity.com/lounge/index.php/board%2C23.0.htmlURL Repurposed
http://www.oscommerceuniversity.com/lounge/index.php/topic%2C1209.0.htmlURL Repurposed

Timeline

Published: Jan 14, 2012
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2012-0693?

How severe is CVE-2012-0693?

Severity scoring for CVE-2012-0693 is pending analysis. The EPSS model estimates a 1.02% probability of exploitation in the next 30 days.

How do I fix CVE-2012-0693?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-0693?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST