# Exploit Title:  SQL Injection  "  Creative Commons «Attribution» 4.0  "
#-----------------------------------------------------------------------------------------
# Exploit Author:  Mehdi Razmjoo ( razmjumehdi@gmail.com )
#-----------------------------------------------------------------------------------------
# Date: 2018.5.05
#-----------------------------------------------------------------------------------------
# Vendor Homepage: https://creativecommons.org/licenses/by/4.0/
#-----------------------------------------------------------------------------------------
# CWE:  CWE-89
#-----------------------------------------------------------------------------------------
# Category: Web Application
#-----------------------------------------------------------------------------------------
#Dork: -
#-----------------------------------------------------------------------------------------
# Vulnerability Path:   http://Server/search.php?id=[ SQLi ]
#-----------------------------------------------------------------------------------------
#Tested On:  Kali Linux ( Firefox )
#-----------------------------------------------------------------------------------------
# Description:
#
# The vulnerability allows an attacker to inject sql commands. A bad guy might injects commands on URL in this path:
#
# http://Server/search.php?id=1
#
#-----------------------------------------------------------------------------------------
#