Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arena vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27854
An arbitrary code execution vulnerability was reported to Rockwell Automation in Arena Simulation that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow. The threat-actor could then execute malicious ...
Rockwellautomation Arena Simulation
7.5
CVSSv2
CVE-2006-5079
PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path_to_bt_dir parameter.
Php Arena Pabugs
1 EDB exploit
7.5
CVSSv2
CVE-2007-4183
SQL injection vulnerability in main.php in paBugs 2.0 Beta 3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cid parameter to index.php.
Php Arena Pabugs
1 EDB exploit
5
CVSSv2
CVE-2005-0724
paFileDB 3.1 and previous versions allows remote malicious users to obtain sensitive information via (1) an invalid str parameter to pafiledb.php, or a direct request to (2) viewall.php, (3) stats.php, (4) search.php, (5) rate.php, (6) main.php, (7) license.php, (8) category.php,...
Php Arena Pafiledb
7.5
CVSSv2
CVE-2006-2361
PHP remote file inclusion vulnerability in pafiledb_constants.php in Download Manager (mxBB pafiledb) integration, as used with phpBB, allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Php Arena Pafiledb 1.1.3
Php Arena Pafiledb 2.0.1
Mxbb Mxbb Portal 2.7
Mxbb Mxbb Portal 2.8
1 EDB exploit
7.5
CVSSv2
CVE-2005-2723
SQL injection vulnerability in auth.php in PaFileDB 3.1, when authmethod is set to cookies, allows remote malicious users to execute arbitrary SQL commands via the username value in the pafiledbcookie cookie.
Php Arena Pafiledb 3.1
5.4
CVSSv2
CVE-2014-5815
The Solitaire Arena (aka com.mavenhut.solitaire) application 1.0.15 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Mavenhut Solitaire Arena 1.0.15
7.5
CVSSv2
CVE-2007-3808
SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote malicious users to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a different vector than CVE-2005-2000.
Php Arena Pafiledb 3.6
1 EDB exploit
6.4
CVSSv2
CVE-2006-2209
Multiple SQL injection vulnerabilities in index.php in PHP Arena paCheckBook 1.1 allow remote malicious users to execute arbitrary SQL commands via (1) the transtype parameter in an add action or (2) entry parameter in an edit action. NOTE: the provenance of this information is u...
Php Arena Pacheckbook 1.1
1 EDB exploit
4.3
CVSSv2
CVE-2004-1551
Cross-site scripting (XSS) vulnerability in the (1) email or (2) file modules in paFileDB 3.1 Final allows remote malicious users to execute arbitrary web script or HTML via the id parameter.
Php Arena Pafiledb 3.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »