Categories: Security

WHMCS SQL Injection Vulnerability !!!

A few days ago, a zero-day SQL injection vulnerability in WHMCS was disclosed by localhost.re, along with the exploit code. It was quickly patched by the WHCMS team and rated as critical since it allows an attacker full access to the database hosting WHMCS:

The vulnerability allows an attacker, who has valid login to the installed product, to craft a SQL Injection Attack via a specific URL query parameter against any product page that updates database information. Creating a valid login is very easy and allowed by default through the registration page.

WHMCS is very popular amongst hosts, and if you use it, you need to update/patch it ASAP!

Vishwajit Kale

Vishwajit Kale blazed onto the digital marketing scene back in 2015 and is the digital marketing strategist of Hostripples, a company that aims to provide affordable web hosting solutions. Vishwajit is experienced in digital and content marketing along with SEO. He's fond of writing technology blogs, traveling and reading.

Will AI Replace Developers in the Future?

Artificial intelligence is changing the tech world at lightning speed. From automated chatbots to AI-generated applications, many people are now…

2 days ago

How To

What is Bot Traffic? Easy Ways to Detect and Block It

Introduction to Bot Traffic Bot traffic refers to visits to a website that come from automated software programs rather than…

2 weeks ago

Windows

WHMCS SQL Injection Vulnerability !!!

Vishwajit Kale

You May Also Like

How to install WHMCS module in Vesta Control Panel

WHMCS Security Advisory TSR-2016-0001 – Admin Application Links CSRF Vulnerability

How to install WHMCS from Softaculous

Recent Posts

Will AI Replace Developers in the Future?

What is Bot Traffic? Easy Ways to Detect and Block It

100+ Essential Windows Commands You Can’t Ignore

YouTube Shorts for Beginners: Step-by-Step Guide (2026)

YouTube SEO Secrets That Actually Work in 2026

Resources