Unrated severityNVD Advisory· Published Mar 14, 2006· Updated Apr 16, 2026
CVE-2006-1232
CVE-2006-1232
Description
Multiple SQL injection vulnerabilities in DSDownload 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) key and (2) category parameters to (a) search.php and (b) downloads.php.
Affected products
1- cpe:2.3:a:dsportal:dsdownload:1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- secunia.com/advisories/19202nvdVendor Advisory
- evuln.com/vulns/99/summary.htmlnvd
- securityreason.com/securityalert/626nvd
- securitytracker.com/idnvd
- www.osvdb.org/23886nvd
- www.osvdb.org/23887nvd
- www.securityfocus.com/archive/1/428808/100/0/threadednvd
- www.securityfocus.com/bid/17116nvd
- www.vupen.com/english/advisories/2006/0934nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25193nvd
News mentions
0No linked articles in our index yet.