Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
JemscriptsDownloadcontrol

2 matches found

CVE
CVEadded 2006/05/24 1:0 a.m.47 views

CVE-2006-2553

This entry documents an XSS vulnerability in Jemscripts DownloadControl 1.0, exploitable via the dcid parameter to dc.php. Conditions: remote attacker can inject arbitrary HTML or web script. The cited CVSS shows MEDIUM severity (AV:N/AC:M/Au:N/C:P/I:N/A:N) with partial confidentiality impact; no...

4.3CVSS5.6AI score0.01369EPSS
CVE
CVEadded 2006/05/24 1:0 a.m.43 views

CVE-2006-2552

CVE-2006-2552 affects Jemscripts DownloadControl 1.0. The vulnerability arises from an invalid dcid parameter to dc.php, which leaks the pathname in an error message (remote information disclosure). The note indicates this was originally claimed as SQL injection, but the root cause is likely else...

5CVSS6.7AI score0.01459EPSS