Pre Studio Business Card Designer SQL Injection

2011-12-25T00:00:00
ID PACKETSTORM:108148
Type packetstorm
Reporter r45c4l
Modified 2011-12-25T00:00:00

Description

                                        
                                            `# Author: r45c4l   
#   
# Home : http://twitter.com/#!/r45c4l  
#   
# Email : infosecpirate@gmail.com   
#   
# Share the c0de!   
#   
# Greetz to all my ICW, AH brothers and all Indian Hackers.  
################################################################   
#   
# Title: Pre Studio Business Card Designer SQL Injection  
#   
#   
###########################################################  
#  
# Script Vendor: http://www.preproject.com/card.asp   
#  
# Price : $ 399  
#  
###########################################################  
  
p0c : http://www.site.com/prestudio/page.php?id=[sqli]   
  
Live Demo :   
  
Demo : http://www.preprojects.com/preprojects/prestudio/page.php?id=2'  
  
Error Message : You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''-1''' at line 1  
`