Описание
Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) search.php and (b) downloads.php.
Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) search.php and (b) downloads.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1232
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25193
- http://evuln.com/vulns/99/summary.html
- http://secunia.com/advisories/19202
- http://securityreason.com/securityalert/626
- http://securitytracker.com/id?1015755
- http://www.osvdb.org/23886
- http://www.osvdb.org/23887
- http://www.securityfocus.com/archive/1/428808/100/0/threaded
- http://www.securityfocus.com/bid/17116
- http://www.vupen.com/english/advisories/2006/0934
EPSS
Процентиль: 88%
0.03642
Низкий
CVE ID
Связанные уязвимости
nvd
почти 20 лет назад
Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) search.php and (b) downloads.php.
EPSS
Процентиль: 88%
0.03642
Низкий