CVE-2006-3525

CVE-2006-3525

EPSS 1.1%

SQL injection vulnerability in category.php in PHCDownload 1.0.0 Final and 1.0.0 Release Candidate 6 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://pridels0.blogspot.com/2006/06/phcdownload-sql-injection-vuln.html https://exchange.xforce.ibmcloud.com/vulnerabilities/27238