Sites designed by Plan B suffer from remote SQL injection vulnerabilities. Note that this finding houses site-specific data.
74353edb6b9bfad8c79dd5fc97bd85115a127b7ec3a208e7ce1ed9b1bf98ca4a
######################################################
# Exploit Title: Plan B CMS SQL injection Vulnerability
#
# Exploit Author: Ashiyane Digital Security Team
#
# Home : www.Ashiyane.org
#
# Vendor Homepage: www.clubhousenairn.co.uk
#
# Software Link: www.planbonline.co.uk
#
# Tested on: Windows 7
#
# Dork: intext:"Website Development: Plan B" & inurl:id=
#
=================================
#Location:site/*.php?id=[SQL]
#
#
#DEm0:http://www.clubhousenairn.co.uk/events.php?id=1588
#DEm0:http://www.mundellmusic.com/events.php?id=1559
#DEm0:http://www.fairfieldhotel.co.uk/page.php?id=2949
#
#
#####################################
======================================
* Greetz to: My Lord Allah
* Sp Tnx To:
Behrooz_Ice,Q7X,Ali_Eagle,Azazel,iman_taktaz,sha2ow,am118,PrinceofHacking,Alireza66,Amirh03in,B4b4K KH4TaR,sil3nt and all
Ashiyane Security [ Researcher Team AND Deface Team ]
* The Last One : My Self, tr0janman
*******
##########################