#######################################################
# Exploit Title : Netcare System - SQL Injection Vulnerability
# Date : 2018/1/7
# Exploit Author : Dark Sword
# Vendor Homepage : netcaresystem.com
# Version : 1.0
# Google Dork : intext:"Design by Netcare System" inurl:.php?id=
# category : Webapps
# Tested on : Windows10 , Firefox
#######################################################
POC:
1 - Search dork in Google
2 - open a Target
3 - Inject DB
DEMO:
aslamtravels.in/book_now.php?id=9
dishacomputers.co.in/admin/product3/editpic.php?id=1
# Discovered by : Dark Sword