Trending: TeCh ZoNe

Tuesday, May 15, 2012

WHMCS Hacking | Submit Ticket Exploit | Easy Tut

INTRO:
[ONLY FOR EDUCATIONAL PURPOSE!] 
Hack WHMCS or you can say its submit ticket exploit through which we will we will get the cpanel username and password of hosting panel and website hosted on that whmcs.
lets start
step 1:
Get a website which provide hosting  and find out the option  " submit ticket"
step 2:
now open submit ticket option and click on sales department
st1.png (1366×774)
step 3:
now we have to fill the following
info like "name , email address, urgency put any random info is these fields and main thing is subject filed"
st2.png (1366×768)
fill this code in subject field
CODE: Download Here

and scroll down fill the Captcha click the submit button
st3.png (1366×768)

we will be redirected to next page where it will show cpanel username and password
boom ! you have cpanel usernames and passwords of hosting panel,website hosted on that server
if you are lucky , you may also get the FTP and SMTP passwords too.

ok it was all about the the cpanel,FTP and SMTP passwords  if whmcs dont have any website hosted on it you wont get anything then
dont be sad ;)
we have one more trick and this will help you to upload the shell on whmcs website.
lets go :)_P
come back to the submit ticket page put any random info in email,name and urgency field
 main step is to put the php code in subject field this time we are going to put the php code, if it got executed successfully we will get a uploader on the website through which  we will be able to upload shell on the website so lets start
fill the any random info in other fields and put this php code in subject field
CODE: Download Here

fill the captcha  click enter, now first of all , have a look on the submit ticket url 
for example 
http://www.website.com/client/submitticket.php 
so to get the uploader replace the submitticket.php with downloads/indexx.php
remember its indexx.php,when code will execute , it will create indexx.php and its uploader
so open the url
http://www.website.com/client/downloads/indexx.php
you will see file upload option


browse the shell and click upload/submit.
after uploading the shell

SHELL ACCESS:
[http://www.website.com/client/downloads/shell_name.php]  

author

This post was written by: shreyash tiwari

Shreyash tiwari is a professional blogger and HACKER, web designer and front end web developer. Follow him on facebook and TWITTER

Blog Warning:

HEY VISITORS THIS IS A NOTE FROM ADMIN:

THIS WEBSITE IS BUILD BY ME ONLY FOR EDUCATIONAL PURPOSE I JUST WANT TO PROVIDE CYBER TIPS SO IF U USE THESE INFORMATION TO HARM ANY SUBSTANCE,COMMUNITY OR PERSON AND GOT CAUGHT THEN I AM NOT RESPONSIBLE FOR IT SO MIND MY WORDS HACKING IS A CYBER CRIME DON'T CHEAT OTHERS WITH YOUR POWERS

KNOWLEDGE IS FOR SHARING ASK-SHARE

FOR MORE INFORMATION MAIL ME:
STSHREYASH50@GMAIL.COM
All Rights Reserved TeCh ZoNe | Blogger Template by Bloggermint
Sponsored by Florida Phone Book, Florida Accountants, Optician Jobs
back to top