Readmore Systems Script SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Readmore Systems Script SQL Injection Vulnerability
# Published : 2011-03-02
# Author : vBzone and Zooka and El3arby
# Previous Title : Quicktech SQL Injection Vulnerability
# Next Title : SnapProof (page.php) SQL Injection Vulnerability

# Exploit Title: [Sql injextion]
# Google Dork: [Website Powered By ReadMore Systems,
Incorporated<http://readmoresystems.com/>
]
# Date: [02/03/2011]
# Author: [Mohammed Fathi(vBzone),Zooka, El3arby (Egyption Hacker's]
# Software Link: [http://readmoresystems.com]
# Version: [All]
# Tested on: [Windows XP professional]
# CVE : [if exists]
Sql injection on file News.php?id=
http://xxx.com/news.php?id=[Sql]
---- Live --
http://www.site.com/news.php?id=157[sql commends]
----
By Zooka,vBzone
http://tantaday.com