# Exploit Title:  SQL Injection in “ Designed By ambalaonline “
#-----------------------------------------------------------------------------------------
# Exploit Author:  Mehdi Razmjoo ( razmjumehdi@gmail.com )
#-----------------------------------------------------------------------------------------
# Date: 2018.08.28
#-----------------------------------------------------------------------------------------
# Vendor Homepage:  https://ambalaonline.com
#-----------------------------------------------------------------------------------------
# Category: Web Application
#-----------------------------------------------------------------------------------------
# Dork: —
#-----------------------------------------------------------------------------------------
# Vulnerability Path:  http://Server/photo-gallery.php?id=[SQLi]
#-----------------------------------------------------------------------------------------
#Tested On:  Kali 2018
#-----------------------------------------------------------------------------------------
#