New Vuln In Whmcs Script

T

tsak

New member
Hey
New Bug In Whmcs
On Submitticket.php = Shell Injection
Shell will Be Uploaded On templates Or templates_c
Big Hosting Site Hacked This Days :sad:
Who Would Like Secure iT Contact Me : Dev@HoTm-iL.Com
Bye :shaky:
 
Can you provide a link to the bug that you're referring to? I've checked the WHMCS website and they're not reporting any new vulnerabilities.

What version of WHMCS are you using? Please also provide a link to the WHMCS bug tracking system (or forum posting) regarding shell exploit via the submitticket.php file.

I also ran a search in the WHMCS forum for "submitticket injection" and there was limited responses to that search also.

More details are needed.
 
Actually, you're not referring to the Base64 injection stuff from november/december 2011 are you? There were patches released that should have been applied.

Basically a person would have inserted a base64 code into a helpdesk ticket, but only affects tickets submitted via email. The regular WHMCS submit forms strip those attempts.

Either way, you should already be patched with the releases from last year (nearly 3 months ago).

Is this what you're referring to?
 
handsonhosting said:
Actually, you're not referring to the Base64 injection stuff from november/december 2011 are you? There were patches released that should have been applied.

Basically a person would have inserted a base64 code into a helpdesk ticket, but only affects tickets submitted via email. The regular WHMCS submit forms strip those attempts.

Either way, you should already be patched with the releases from last year (nearly 3 months ago).

Is this what you're referring to?
Click to expand...


Yes he is referring the same bug. I dont think he is updated and if its really new then we are not updated
 
the last exploit bug is the base64 which has been patched and any new orders will already have this in place within version 5.0.3.

just spoken to one of the forum mods and they have explained this many times to the OP. he must just not be able to take it in
 
Bullten said:
well the exploit you are talking about is little old.

I did a quick reverse check and found they are on shared hosting
http://www.yougetsignal.com/tools/web-sites-on-web-server/

Well are you sure that's a big hosting company?

Well if you think to host your company website on shared web server then you should be aware of how to protect it.
Click to expand...

also for a "BIG" hosting company to get hacked and then just leave the hacked site etc. live is just plain stupid. if it was me i would have replaced the index file and if this failed i would have taken the site down, checked with my host on how they got in and then reinstalled a clean fresh site.
but the fact they got in means whoever they get their hosting from has an insecure server
 
tsak said:
Well are you sure that's a big hosting company?
Yes iT's a Big Hosting :(
Click to expand...

you clearly need to learn a lot about the hosting business

a 'BIG' company will have their own server and/or hardware. as boxvps is only on a shared reseler server then they are far from a 'BIG' company they are more like a 'VERY SMALL' company
 
I'm assuming you're referring to AltusHost when they were hacked a few days back because of their WHMCS containing previous WHMCS files that were still in the directory. Just ensure all your files are the most recent and you'll have no problems.

Regards,
Tanner
 
all those Vulns has been patched on the Latest WHMCS V 5.0X

Password protect your Admin login panel. and you will be safe. 99% sure of that,
 
If there was an active vulnerability with WHMCS, they would have been informed well before the OP posted it on this forum and if the OP thought it was an official vulnerability they would have contacted WHMCS directly since they also use WHMCS (From the link in their signature).

Sounds fishy that the OP would post it globally rather than privately with WHMCS directly.
 
tsak said:
Hey
New Bug In Whmcs
On Submitticket.php = Shell Injection
Shell will Be Uploaded On templates Or templates_c
Big Hosting Site Hacked This Days :sad:
Who Would Like Secure iT Contact Me : Dev@HoTm-iL.Com
Bye :shaky:
Click to expand...

tsak said:
Contact Me brO ;)
Click to expand...

tsak said:
http://www.boxvps.co.uk/index.htm
This Is a bIg Hosting Hacked :p
Click to expand...

tsak said:
Well are you sure that's a big hosting company?
Yes iT's a Big Hosting :(
Click to expand...

Have you not looked at how this guy answers? Hes answering like a child, I think we've definately come to a conclusion that.

1. Yes hes on about a hack that was present but its been patched.
2. The link he gave was a total hack and not a large company (probably just a fake hack)
 
yes and he wants us to contact a hotmail email address to secure our WHMCS that Matt and the team have already given a patch. i wonder if he is the one who is the hacker and want us to provide him access to our WHMCS so he can hack us.
 
Last edited:
You must log in or register to reply here.

Supporters

Back
Top