BlackNova Traders (SQL Injection) Vulnerability
 
       Software : BlackNova                                                             
       Date     : 2/12/2013                                            
       Vendor   : http://blacknova.net/
	   Download : http://sourceforge.net/projects/blacknova/            
       Language : PHP
	   Tested on: Windows OS + Apache Server
       Author   : ITTIHACK  
       Home     : http://ittihack.com                                                           
                                                                                                                        

Description

      BlackNova Traders is a web-based, multi-player space exploration game inspired by the
      popular BBS game of TradeWars. It is coded using PHP, SQL, and Javascript.     
       
	      
	   
	   Vulnerable File:  news.php 
	   Line# 43       : if (array_key_exists('startdate', $_GET) && ($_GET['startdate'] != ''))

            
       Exploit:
       http://localhost/bnt/news.php?startdate=2013/02/11[SQLi]
           
		   
 Free Syria