|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*|
|-------------------In The Name Of God------------------------|
|[+] Exploit Title : upgeneration Sql Injection Vulnerability
|[+] Exploit Author : Ashiyane Digital Security Team
|[+] Vendor Homepage : http://www.upgeneration.it/
|[+] Google Dork : " inurl:index.php?page=pagine&id_page=176 & intext:Warning: mysql_num_rows"
|[+] Tested on : Windows 10 ~~> Mozilla Firefox
|[+] Contact: shahroukh06@gmail.com
|[+] Date : 1/---/2017
|[+]======================================|
|[+] Then Choose a Target and put this after URL : /admin
|[+]======================================|
|[+] Proof:
|[+] http://www.sperifightclub.it/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.ristorantemichelin.com/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.pietrefortetesoro.it/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.articoliregalocastionibussolengo.it/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.stampagraficaverona.it/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.cctraslocatori.eu/index.php?page=pagine&id_page=176 [SQLI]
|[+] http://www.ilem.it//index.php?page=pagine&id_page=176 [SQLI]
|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*|
|[+] Discovered By : sir shahroukh
|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*|