-------------------In The Name Of God----------------------  
 
 Exploit Title: LLC cms sql injection vulnerability
   
 Exploit Author: Ashiyane Digital Security Team   
   
 Vendor Homepage: http://www.imprtech.com
   
 Google Dork : intext:"Website | Impression Technologies LLC" & inurl:/news.php?id=
 
 vulnerable file : news.php
  
 Tested on: Windows 10 ~~~> Google Chrome   
  
 Date: 30/8/2017    
----------------------------------------------------------


vulnerability discovered by :

 sir shahroukh

-----------------------------
vulnerability Path :

 http://Target/news.php?id=[sqli]
-----------------------------

vulnerability File:

 news.php
-----------------------------

vulnerability Method :

 _GET[]
-----------------------------

vulnerability Variable:

 id

-----------------------------

Proof :

 http://www.paramusec.org/news.php?id=[sqli]
   
 http://www.njstateopera.org/news.php?id=[sqli]
   
 http://www.ginazavalis.com/news.php?id=[sqli]
  
 http://www.garyusbonds.com/news.php?id=[sqli]

 http://www.thecatching.com/news.php?id=[sqli]

 http://www.ritaharvey.com/news.php?id=[sqli]

==============================================|