Clausvb - Dl Stats CVE

Filtered by vendor Clausvb Subscribe

Filtered by product Dl Stats

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2010-1497	1 Clausvb	1 Dl Stats	2024-02-04	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in download_proc.php in dl_stats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
CVE-2010-1498	1 Clausvb	1 Dl Stats	2024-02-04	7.5 HIGH	N/A
Multiple SQL injection vulnerabilities in dl_stats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) download.php and (2) view_file.php.

Vulnerabilities (CVE)