# Exploit Title: SQL Injection in “ Designed By ambalaonline “
#-----------------------------------------------------------------------------------------
# Exploit Author: Mehdi Razmjoo ( razmjumehdi@gmail.com )
#-----------------------------------------------------------------------------------------
# Date: 2018.08.28
#-----------------------------------------------------------------------------------------
# Vendor Homepage: https://ambalaonline.com
#-----------------------------------------------------------------------------------------
# Category: Web Application
#-----------------------------------------------------------------------------------------
# Dork: —
#-----------------------------------------------------------------------------------------
# Vulnerability Path: http://Server/photo-gallery.php?id=[SQLi]
#-----------------------------------------------------------------------------------------
#Tested On: Kali 2018
#-----------------------------------------------------------------------------------------
#