# Exploit title:  SQL Injection Vulnerability in Yahoo Small Business CMS
#
# Date: 3-23-2018
#
# Exploit Author:  Mehdi Razmjoo ( razmjumehdi@gmail.com )
#
# Vendor Homepage: https://smallbusiness.yahoo.com
#
# Category: Web Application
#
# CWE: CWE-89
#
# =============================
#
# Description:
#
# I found a SQL Injection vulnerability in " Yahoo Small Business " CMS. Through this vulnerability an attacker executes SQL     
# Command on target. This vulnerability address on target:
#
# http://Server/page.php?id=[SQLi]
#
#=============================
#