CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Dsportal: >> Dsdownload Security Vulnerabilities

CVE-2006-1232

Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) search.php and (b) downloads.php.

CVSS Score

7.5

EPSS Score

0.036

Published

2006-03-14

Page 1

Vulnerabilities

Vulnerable Software

Dsportal: >> Dsdownload Security Vulnerabilities

Products

Pricing

Contact Us