SQL injection vulnerability in download.php in phux Download Manager allows remote attackers to execute arbitrary SQL commands via the file parameter.Referenceshttp://www.securityfocus.com/bid/51725http://www.exploit-db.com/exploits/18432https://exchange.xforce.ibmcloud.com/vulnerabilities/72826
