Lagom WHMCS Template Datatables resource consumption_CVE-2026-6601

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown function of the component Datatables. The manipulation leads to resource consumption. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2026-6601

Source VulDB

Published Apr 20, 2026 at 03:30

Affected Product

Vendor Lagom

Product WHMCS Template

Version 2.4.0

Affected Versions Lagom WHMCS Template 2.4.0
Lagom WHMCS Template 2.4.1
Lagom WHMCS Template 2.4.2

CWE Classification

CWE-400 CWE-404

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown function of the component Datatables. The manipulation leads to resource consumption. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-04-20T03:30:14.978Z",
    "modified": "2026-04-20T03:30:14.978Z",
    "type": "cve",
    "title": "Lagom WHMCS Template Datatables resource consumption",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/358236\nhttps://vuldb.com/vuln/358236/cti\nhttps://vuldb.com/submit/791943\nhttps://github.com/devsamuelsantiago/lagom-whmcs-dos-poc",
    "id": "CVE-2026-6601",
    "bulletinFamily": "",
    "cwe": [
        "CWE-400",
        "CWE-404"
    ],
    "cvelist": null,
    "sourceData": "Lagom WHMCS Template 2.4.0\nLagom WHMCS Template 2.4.1\nLagom WHMCS Template 2.4.2",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WHMCS Template",
    "version": "2.4.0",
    "vendor": "Lagom",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}