[38229] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

SQL INJECTION in DLMan Pro. PHPBB Mod.

daemon@ATHENA.MIT.EDU (rock master)
Tue Apr 5 14:04:34 2005

Date: 4 Apr 2005 23:31:19 -0000
Message-ID: <20050404233119.20700.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: rock master <rock_mask@hotmail.com>
To: bugtraq@securityfocus.com



SQL Injection was found in the Variable $file_id in : DLMan Pro' Mod
vulnerable system :
phpBB 2.0.x 
exploit :
dlman.php?func=file_info&file_id='[SQL Injection]


Bug Found by : LovER BOY

SecurityGurus Team
www.securitygurus[d0t]Net

home	help	back	first	fref	pref	prev	next	nref	lref	last	post