COMMUNITY ALERT WHMCS 5.2.7 SQL INJECTION EXPLOIT WARNING!

Discussion in 'Web Hosting' started by MyBB Hoster, Oct 3, 2013.

0
  1. #1
    Hello,

    I would like to inform fellow members and friends of Digital Point. If you are a hosting provider and using WHMCS your site may be in danger. They need to register in order to run the exploit. So check new registrants and see if any files were uploaded to your billing directory. Patch your WHMCS as soon as you can. Hope this helps and if this has already been posted I am sorry. If you have any questions or concerns please don't hesitate to ask.

    Regards,
    Michael
     
    MyBB Hoster, Oct 3, 2013 IP
    matt_62 likes this.
  2. WSWD

    WSWD Well-Known Member

    Messages:
    1,420
    Likes Received:
    65
    Best Answers:
    1
    Trophy Points:
    175
    #2
    WSWD, Oct 3, 2013 IP
  3. MyBB Hoster

    MyBB Hoster Active Member

    Messages:
    64
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    78
    #3
    Now that I assume everyone here has their WHMCS patched this will give you an understanding of how the exploit was executed and what to check for just in cause you were hit.

    http://localhost.re/p/whmcs-527-vulnerability
     
    MyBB Hoster, Oct 4, 2013 IP