Shodan
Vulnerabilities
Vulnerable Software
Phparcadescript:  >> Phparcadescript  >> 2.0  Security Vulnerabilities
CVE-2008-1163
SQL injection vulnerability in index.php in phpArcadeScript 1.0 through 3.0 RC2 allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action.
CVSS Score
7.5
EPSS Score
0.002
Published
2008-03-05
CVE-2006-1082
Multiple cross-site scripting (XSS) vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the gamename parameter in tellafriend.php, (2) the login_status parameter in loginbox.php, (3) the submissionstatus parameter in index.php, the (4) cell_title_background_color and (5) browse_cat_name parameters in browse.php, the (6) gamefile parameter in displaygame.php, and (7) possibly other parameters in unspecified PHP scripts.
CVSS Score
4.3
EPSS Score
0.006
Published
2006-03-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved