A critical SQL Injection Vulnerability has been discovered by zSecure Team in a high profile web portal. This time it’s Ideacellular web portal which compromises the entire site database. Any malicious smart black hats can create much more devastating attacks using this critical flaw such as: complete access to various database’s as shown in screen-shots under proof of vulnerability which can later be misused to access confidential information; complete database dump; possibility of uploading shell (not fully certain) and much more.
Source: https://thehackernews.com/2011/08/idea-cellular-web-portal-hacked.html