Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php arena vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0327
pafiledb.php in Pafiledb 3.1 may allow remote malicious users to execute arbitrary PHP code via a modified action parameter that is used in an include statement for login.php.
Php Arena Pafiledb 3.1
NA
CVE-2005-0724
paFileDB 3.1 and previous versions allows remote malicious users to obtain sensitive information via (1) an invalid str parameter to pafiledb.php, or a direct request to (2) viewall.php, (3) stats.php, (4) search.php, (5) rate.php, (6) main.php, (7) license.php, (8) category.php,...
Php Arena Pafiledb
NA
CVE-2005-0475
SQL injection vulnerability in paFAQ Beta4, and possibly other versions, allows remote malicious users to execute arbitrary SQL code via the (1) offset, (2) limit, (3) order, or (4) orderby parameter to question.php, (5) offset parameter to answer.php, (6) search_item parameter t...
Php Arena Pafaq Beta4
4 EDB exploits
NA
CVE-2005-0485
Cross-site scripting (XSS) vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote malicious users to inject arbitrary HTML and web script via the showpost parameter.
Phparena Panews 2.0b4
NA
CVE-2005-0780
paFileDB 3.1 and previous versions allows remote malicious users to obtain sensitive information via a direct request to (1) auth.php, (2) login.php, (3) category.php, (4) file.php, (5) team.php, (6) license.php, (7) custom.php, (8) admins.php, or (9) backupdb.php, which reveal t...
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
Php Arena Pafiledb 2.1.1
Php Arena Pafiledb 3.0
Php Arena Pafiledb 1.1.3
1 EDB exploit
NA
CVE-2005-0723
Cross-site scripting (XSS) vulnerability in the jumpmenu function in functions.php for paFileDB 3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URL parameters, which is not properly cleansed in the $pageurl variable, as demon...
Php Arena Pafiledb 3.1
NA
CVE-2005-0674
Cross-site scripting (XSS) vulnerability in the News module for paBox 1.6 allows remote malicious users to inject arbitrary web script or HTML via the text hidden parameter in an HTTP POST request.
Php Arena Pabox 1.6
NA
CVE-2004-1219
paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote malicious users to read the administrator's password hash and conduct brute force password guessing attacks by listing the contents of the sessions directory and reading the a...
Php Arena Pafiledb 3.1
NA
CVE-2004-1551
Cross-site scripting (XSS) vulnerability in the (1) email or (2) file modules in paFileDB 3.1 Final allows remote malicious users to execute arbitrary web script or HTML via the id parameter.
Php Arena Pafiledb 3.1
1 EDB exploit
NA
CVE-2004-1975
Cross-site scripting (XSS) vulnerability in the category module in pafiledb.php for paFileDB 3.1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter, a vulnerability that is closely related to CVE-2004-1551.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »