Exploit Title : Iranian Connection Network CMS SQL Injection Vulnerability
Exploit Author : 0x3a
Date : 26 / 07 / 2016
Vendor HomePage : www.irnethost.ir
Version : All Version
Tested On : Win7 , Mozilla FireFox
----------------------------
# Vulnerable Parametr : number
----------------------------
# Dork(s) : intext:"طراحي و اجرا : شبکه ارتباطات ایرانیان "
intext:"Powered & Desigend By : Irnethost.ir"
----------------------------
# Demo :
www.irnethost.ir/?show=p0&number=23
www.isogamasl.com/?show=p0&number=22
www.sadafsazan.com/?show=p2&number=34
www.lamaso.ir/?show=p0&number=22
----------------------------
Greetz To : MOHAMAD-NOFOZI , Root3r