Surge Media CMS SQL Injection

################################ Archieve an Resource About Hacking ###############
#################### ####################
#
# Exploit Title: Surgemedia Cms Sql Injection Vulnerability
# Author: Netrondoank Aka netron / seth erry
# home Page: http://www.ilmuhacker.org
# Forum : http://www.indonesiansecurity.info and http://indotek.or.id
# Vendor or Software Link: http://www.surgemedia.com.au/work/design-projects.aspx
# Version: N/A
# Category:: webapps
# Google dork: "Powered by ADICD"
# Tested on: Linux Back Track 5

####################################################################
#  Proof Of Concept [POC]

http://site/project-detail.php?id=[Sqli]
http://site/shop.php?cid=[Sqli]
http://site/product-detail.php?id=[Sqli]
http://site/news_details.php?news_id=[Sqli]
http://site/residential-building-projects.php?cid=[Sqli]