########################### # Artaan CMS SQL Injection vulnerability ########################### ============ [+]@~Exploit Title : Artaan CMS SQL Injection vulnerability [+] [+]@~Exploit Author : Omid.Developer [+] [+]@~Telegram : @Omid_Developer [+] [+]@~Vendor Homepage : http://artaan.ir/ [+] [+]@~Portfolio : http://artaan.ir/projects.php [+] [+]@~Google Dork : intext:"Design and Development by Artaan Group" [+] [+]@~Tested on : Windows 7,GNU Linux,Windows XP ============ [+] @~Location : [+] [+] /products-cat.php?id=[SQLi] [+] /products-single.php?id=[SQLi] [+] /product.php?cat=[SQLi] [+] [+] @~Demo: [+] [+] http://royan-sport.com/products-single.php?id=80 [+] [+] @~Demo 2 : [+] [+] http://sepidaj.com/product.php?cat=1 [+] +---------------------------------------------------------+ [+]~Discovered By : Omid.Developer ============