CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0782

Cross-site scripting (XSS) vulnerability in (1) viewall.php and (2) category.php for paFileDB 3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the start parameter to pafiledb.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.043

EPSS Ranking 88.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://digitalparadox.org/advisories/pafdb.txt
http://marc.info/?l=bugtraq&m=111065796525043&w=2
http://marc.info/?l=bugtraq&m=111221940107161&w=2
http://www.securityfocus.com/bid/12788
https://exchange.xforce.ibmcloud.com/vulnerabilities/19690
http://digitalparadox.org/advisories/pafdb.txt
http://marc.info/?l=bugtraq&m=111065796525043&w=2
http://marc.info/?l=bugtraq&m=111221940107161&w=2
http://www.securityfocus.com/bid/12788
https://exchange.xforce.ibmcloud.com/vulnerabilities/19690

Products affected by CVE-2005-0782

Php Arena » Pafiledb » Version: 1.1.3

cpe:2.3:a:php_arena:pafiledb:1.1.3
Php Arena » Pafiledb » Version: 2.1.1

cpe:2.3:a:php_arena:pafiledb:2.1.1
Php Arena » Pafiledb » Version: 3.0

cpe:2.3:a:php_arena:pafiledb:3.0
Php Arena » Pafiledb » Version: 3.0_beta_3.1

cpe:2.3:a:php_arena:pafiledb:3.0_beta_3.1
Php Arena » Pafiledb » Version: 3.1

cpe:2.3:a:php_arena:pafiledb:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0782

Products

Pricing

Contact Us