CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Dsportal: >> Dscounter Security Vulnerabilities

CVE-2006-1234

SQL injection vulnerability in index.php in DSCounter 1.2, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field (HTTP_X_FORWARDED_FOR environment variable) in an HTTP header.

CVSS Score

5.1

EPSS Score

0.028

Published

2006-03-14

Page 1

Vulnerabilities

Vulnerable Software

Dsportal: >> Dscounter Security Vulnerabilities

Products

Pricing

Contact Us