CVE-2006-3525
SQL injection vulnerability in category.php in PHCDownload 1.0.0 Final and 1.0.0 Release Candidate 6 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Date published : 2006-07-11
http://pridels0.blogspot.com/2006/06/phcdownload-sql-injection-vuln.html