Vulnerabilities > Jemscripts
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-05-24 | CVE-2006-2553 | Cross-Site Scripting vulnerability in Jemscripts Downloadcontrol 1.0 Cross-site scripting (XSS) vulnerability in Jemscripts DownloadControl 1.0 allows remote attackers to inject arbitrary HTML or web script via the dcid parameter to dc.php. network jemscripts | 4.3 |
2006-05-24 | CVE-2006-2552 | SQL Injection vulnerability in Jemscripts Downloadcontrol 1.0 Jemscripts DownloadControl 1.0 allows remote attackers to obtain sensitive information via an invalid dcid parameter to dc.php, which leaks the pathname in an error message. | 5.0 |