Activity Stream
Quick Links
48,167 MEMBERS
64658 ONLINE
Register Now
besthostingforums On YouTube Subscribe to our Newsletter besthostingforums On Twitter besthostingforums On Facebook besthostingforums On facebook groups

Results 1 to 7 of 7
  1. 4th Dec 2011, 07:48 AM
        
    #1
    Glenn is offline
    OP
    Glenn
    Member
    Website's: 
    
KWWHunction.com
Google.com

    Default WHMCS Security Exploit+Patch

    A security issue has been discovered that we consider to be of a high severity, and as a result we have decided there is a need to release an immediate patch for it.

    Although not related to the new release, it is unfortunate timing so soon after the release, but we take security very seriously and so if an issue becomes apparent to us, we will always issue a patch immediately for it as our track record with patches in recent years demonstrates.

    Applying the patch is very simple. It's just a single file to update. There are separate versions of the file for each release of WHMCS from V4.0 up to the very latest V5.0 release. The patch download consists of a single file which just needs to be unzipped, and then uploaded to the /includes/ folder replacing the existing file. Download links are as follows:

    Version 4.0.x -> http://www.whmcs.com/members/dl.php?type=d&id=107
    Version 4.1.x -> http://www.whmcs.com/members/dl.php?type=d&id=108
    Version 4.2.x -> http://www.whmcs.com/members/dl.php?type=d&id=109
    Version 4.3.x -> http://www.whmcs.com/members/dl.php?type=d&id=110
    Version 4.4.x -> http://www.whmcs.com/members/dl.php?type=d&id=111
    Version 4.5.x -> http://www.whmcs.com/members/dl.php?type=d&id=112
    Version 5.0.x -> http://www.whmcs.com/members/dl.php?type=d&id=113

    If you have any questions or need any assistance applying the patch, please do not hesitate to contact us.

    We apologize for the inconvenience.

    * An email notification is going out to all active license holders
    * All client area downloads have been updated to include this by default

    Patch Your WHMCS Before you are HACKED!

    Courtesy
    Glenn Reviewed by Glenn on . WHMCS Security Exploit+Patch Patch Your WHMCS Before you are HACKED! Courtesy Rating: 5
    Intel Xeon E3 -1240 16 GB DDR3 Ram 4 x 1 TB HDD 1 Gbit 100 TB BW -
    Location:Netherlands 185 Euros/Month- PM me to order
    Reply With QuoteRegister To Reply Ping this articlePing

    2.   Sponsored Links

  2. 4th Dec 2011, 08:00 AM
        
    #2
    Lifetalk is offline
    Lifetalk
    It begins...
    Out of interest, what IS the security issue? That is to say, what does it allow the exploiter to do?
    Reply With QuoteRegister To Reply
  3. 4th Dec 2011, 11:37 AM
        
    #3
    downote is offline
    downote
    Banned
    The vulnerable code is located under cart.php which contains:
    Code: 
        if ( $a == "add" )
    {
       $templatefile = "configureproductdomain";
        ....etc
    }

    if ( $a == "login" )
    {
        $templatefile = "login";
        ....etc
    }
     ...
    outputClientArea( $templatefile, $nowrapper );
    # outputClientArea function will display
    "./templates/orderforms/cart/{$templatefile}.tpl"
    Reply With QuoteRegister To Reply
  4. 4th Dec 2011, 11:42 AM
        
    #4
    Krun!x is offline
    Krun!x
    Member
    Quote Originally Posted by Lifetalk View Post
    Out of interest, what IS the security issue? That is to say, what does it allow the exploiter to do?
    It allows attacker to insert a malicious PHP script to WHMcs assuming he can write to any directory inside public_html.

    Here is my patch which prevents uploading ANY files inside public_html in case there are other exploits out there.
    http://www.besthostingforums.com/10-...tch-whmcs.html
    KnownSRV.com - Quality comes at a price, and we provide it at affordable prices.
    PayPal, Skrill(MoneyBookers), Payza(AlertPay), 2CheckOut and LibertyReserve accepted!
    Reply With QuoteRegister To Reply
  5. 4th Dec 2011, 01:07 PM
        
    #5
    gfxguru is offline
    gfxguru
    Member
    Website's: 
    
GFXWebHosting.com
WarezJobs.com
    thanks guys
    Reply With QuoteRegister To Reply
  6. 4th Dec 2011, 02:35 PM
        
    #6
    dark_hunter is offline
    dark_hunter
    Member
    Website's: 
    
servedome.com
    So this is what screwed Servedome and Boxslots?
    Reply With QuoteRegister To Reply
  7. 8th Dec 2011, 01:59 AM
        
    #7
    xentos is offline
    xentos
    Member
    Website's: 
    
Xentos.nl
    High likely yes, although there is a patch for it and if they are not fast enough to apply the patch there is a big chance it will be used on you.

    they can decompile both old and new patched file and find the exploit. that's why it's rather annoying, by the time you receive a mail from whmcs 100.000s people know about it. and there are always one or two who like to exploit it.
    Reply With QuoteRegister To Reply
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. WHMCS Security Patch Released!
    By Rox in forum Hosting Discussion
    Replies: 11
    Last Post: 7th Jun 2012, 01:14 AM
  2. Security Patch for WHMCS released.
    By Exel in forum News & Current Events
    Replies: 1
    Last Post: 29th May 2012, 08:17 PM
  3. WHMCS Security Patch
    By robert420 in forum Hosting Discussion
    Replies: 0
    Last Post: 3rd Dec 2011, 02:04 AM
  4. WHMCS 4.X Security Patch
    By Cory in forum News & Current Events
    Replies: 0
    Last Post: 15th Jun 2011, 07:57 AM
  5. Security exploit identified in Exim
    By DLow in forum Technical and Security Tutorials
    Replies: 3
    Last Post: 12th Dec 2010, 10:04 PM

Tags for this Thread

BE SOCIAL
FAQ | SITEMAP
Copyright ® 2008 - 2015 besthostingforums.com
Copyright © 2013 vBulletin Solutions, Inc. All rights reserved.
BestHostingForums.com is a great place to learn about Internet Marketing Online, SEO Techniques, Search Engine Marketing and resources for Web Development.