# Exploit Title: SQL Injection [B2B]
# Exploit Author: 'GonzaLes l SiberCasus.org
# Dork: inurl:News_desc.html id = "B2B"
# Date:2016/07/28
# Tested on: Sqlmap v 1.0.4.0#dev
Demo:
# http://www.sadaf24.com/news_desc.html?id=7
# http://mustafa.buyb2bscript.com/news_desc.html?id=5
# http://eximedpharma.clabers.com/news_desc.html?id=4
