hack whmcs v7

saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
hi
I'm using a whmcs system that has null version 7.
A few days ago, a hacker hacked it and did whatever he wanted with the admin access level. And he put his PayPal address in the site and my customers unknowingly deposited money into his account. I deleted his username several times but it still comes up. I encrypted the login path to the admin page and even renamed it. I even changed the access login page of the admin page to my own IP, but it still has access to the admin panel.
I do not know where they get access to this password? Does he have access to CNN or whmcs himself ?? If it has access to whmcs then how can you edit the .htaccess file?
What is the way to remove his access?

Can you check the subject? I was really upset and could only get out of the way.
 
Bossmanuk

Bossmanuk

Active member
Jan 30, 2021
133
121
43
Firstly, Welcome to Babiato!
Your WHMCS script is only as secure as your server as both need to work in harmony.

You also need to look at upgrading to the lastest version to make sure there is no security issues with the script.

What is your server environment? Shared, VPS or Dedicated

Does the server have real-time antivirus and malware scanners?

Do the server have a firewall and modsecurity installed?

Where did you get the WHMCS from is it safe or does it have a backdoor?

These are the basics you need to ask yourself before you can really secure your WHMCS.
 
  • Like
Reactions: siriot
lorddoom

lorddoom

Well-known member
Apr 6, 2020
98
279
63
saadatidust said:
hi
I'm using a whmcs system that has null version 7.
A few days ago, a hacker hacked it and did whatever he wanted with the admin access level. And he put his PayPal address in the site and my customers unknowingly deposited money into his account. I deleted his username several times but it still comes up. I encrypted the login path to the admin page and even renamed it. I even changed the access login page of the admin page to my own IP, but it still has access to the admin panel.
I do not know where they get access to this password? Does he have access to CNN or whmcs himself ?? If it has access to whmcs then how can you edit the .htaccess file?
What is the way to remove his access?

Can you check the subject? I was really upset and could only get out of the way.
Click to expand...
Hello, if possible dm me, i may help you out with a possible solution, alternatively i recommend to update the whmcs version to the latest.
 
  • Like
Reactions: saadatidust
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
Bossmanuk said:
Firstly, Welcome to Babiato!
Your WHMCS script is only as secure as your server as both need to work in harmony.

You also need to look at upgrading to the lastest version to make sure there is no security issues with the script.

What is your server environment? Shared, VPS or Dedicated

Does the server have real-time antivirus and malware scanners?

Do the server have a firewall and modsecurity installed?

Where did you get the WHMCS from is it safe or does it have a backdoor?

These are the basics you need to ask yourself before you can really secure your WHMCS.
Click to expand...
Hello
The server has a firewall
Our hosting is shared
I downloaded and installed whmcs from Babiato.
 
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
The username he uses is exactly the same as my whmcs system admin username, with only one number added to the end.
Does he have access to C Panel or does he create this username via Sql injection?
 
nobs

nobs

Well-known member
Babiato Lover
Jun 26, 2020
290
1,170
93
Travelling...
saadatidust said:
The username he uses is exactly the same as my whmcs system admin username, with only one number added to the end.
Does he have access to C Panel or does he create this username via Sql injection?
Click to expand...


Good day

UPDATE​

UPDATE​

UPDATE​


All your systems.

WHMCS and any scripts are not updated to look cool.
They are because of security concerns.

The hacker, either knows a vulnerability in version 7 or your server is not up to date.

In any case, stop talking here and update your WHMCS to the latest version, then come back and talk for more help.

Cheers.
NoBs
 
Bossmanuk

Bossmanuk

Active member
Jan 30, 2021
133
121
43
saadatidust said:
Hello
The server has a firewall
Our hosting is shared
I downloaded and installed whmcs from Babiato.
Click to expand...
Update WHMCS to the latest version, then change all passwords on the server Cpanel including emails. Then scan the server with Clamav or maldetect if you don't know what they are please ask your hosting provider if they can install it on the server for you. Scan all directories and see if it detects any backdoors etc.
 
  • Like
Reactions: saadatidust
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
Exactly I doubt them too.
Friends, can you help me find a suitable feeling? Hosts that support DMCA?
 
automaytic

automaytic

Well-known member
Trusted Uploader
Banned User
May 17, 2021
284
511
93
Earth
wizzyweb.com
First of all, If you are using it for service purpose, Then VPS or cloud is best option for any reputed company.
I am running my approx all website of AWS and Digital Ocean Droplet, It charged very less than any other hosting provider.
I have received several time promotional code.

In This case, It is SQL injection or access through your cpanel.
 
  • Like
Reactions: saadatidust
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
pateljee said:
First of all, If you are using it for service purpose, Then VPS or cloud is best option for any reputed company.
I am running my approx all website of AWS and Digital Ocean Droplet, It charged very less than any other hosting provider.
I have received several time promotional code.

In This case, It is SQL injection or access through your cpanel.
Click to expand...
How can I fix the problem?
 
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
C Panel has detected these files as malicious. How do I delete them? Should I delete them manually? ytrg.jpg
 
saadatidust

saadatidust

New member
Apr 25, 2021
24
0
1
The hosting provider asked me to send them my last backup from last year so they could run it on another host for me.
The problem is that we new users are used to whmcs .. Can I restore the database backup on that new host after restoring old files so that my new users' information is not lost?
 
automaytic

automaytic

Well-known member
Trusted Uploader
Banned User
May 17, 2021
284
511
93
Earth
wizzyweb.com
saadatidust said:
The hosting provider asked me to send them my last backup from last year so they could run it on another host for me.
The problem is that we new users are used to whmcs .. Can I restore the database backup on that new host after restoring old files so that my new users' information is not lost?
Click to expand...
Yes. You can use this backup.
 
You must log in or register to reply here.

Similar threads

MrSam_1
Zhost v3 WHMCS Theme
Replies
6
Views
253
WHMCS Modules
comcpa2022
comcpa2022
MrSam_1
WordPress Manager for WHMCS
Replies
0
Views
74
WHMCS Modules
MrSam_1
MrSam_1
MrSam_1
cPanel Extended for WHMCS
Replies
1
Views
90
WHMCS Modules
djembe
djembe
MrSam_1
Hexa - Responsive Dashboard WHMCS Template
Replies
0
Views
113
WHMCS Modules
MrSam_1
MrSam_1
MrSam_1
Email Verifier for WHMCS
Replies
0
Views
112
WHMCS Modules
MrSam_1
MrSam_1

Latest posts

Forum statistics

Threads
69,206
Messages
908,349
Members
236,884
Latest member
Binotrada

Share this page

Share this page

About us

  • Our community has been around for many years and pride ourselves on offering unbiased, critical discussion among people of all different backgrounds. We are working every day to make sure our community is one of the best.

Quick Navigation

Forums Contact us

User Menu

Login
Community platform by XenForo © 2010-2022 XenForo Ltd.
Top Bottom