What is CVE-2026-6601?

CVE-2026-6601 is a medium-severity vulnerability in Lagom Whmcs Template, classified under Uncontrolled Resource Consumption. CVSS score: 4.3/10. Published 2026-04-20.

How severe is CVE-2026-6601?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Resource exhaustion in Lagom Whmcs Template

CVE-2026-6601

A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown function of the component Datatables. The manipulation leads to resource consumption. Remote exploitation of the attack is possible. The exploit ha…

Vulnerability class: DoS (Denial of Service)

EPSS: 0.000 (15.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L.

Affected products

Lagom Whmcs Template — versions 2.4.0, 2.4.1, 2.4.2

Weakness classification (CWE)

References

VDB-358236 | Lagom WHMCS Template Datatables resource consumption (vdb-entry)
VDB-358236 | CTI Indicators (IOB, IOC, TTP) (signature, permissions-required)
Submit #791943 | Lagom WHMCS Template ≤ 2.4.2 Denial of Service (third-party-advisory)
cna@vuldb.com (exploit)

Frequently asked questions

What is CVE-2026-6601?: CVE-2026-6601 is a medium-severity vulnerability in Lagom Whmcs Template, classified under Uncontrolled Resource Consumption. CVSS score: 4.3/10. Published 2026-04-20.
How severe is CVE-2026-6601?: Medium severity. CVSS v3 base score is 4.3 out of 10.