SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) before 1.3.009 allows remote attackers to execute arbitrary SQL commands via the download_category parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
All_in_one_control_panel | Nicola_asuni | 1.3.000 | 1.3.000 |
All_in_one_control_panel | Nicola_asuni | 1.3.001 | 1.3.001 |
All_in_one_control_panel | Nicola_asuni | 1.3.002 | 1.3.002 |
All_in_one_control_panel | Nicola_asuni | 1.3.003 | 1.3.003 |
All_in_one_control_panel | Nicola_asuni | 1.3.004 | 1.3.004 |
All_in_one_control_panel | Nicola_asuni | 1.3.005 | 1.3.005 |
All_in_one_control_panel | Nicola_asuni | 1.3.006 | 1.3.006 |
All_in_one_control_panel | Nicola_asuni | 1.3.007 | 1.3.007 |
All_in_one_control_panel | Nicola_asuni | 1.3.008 | 1.3.008 |