Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php arena vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-0723
Cross-site scripting (XSS) vulnerability in the jumpmenu function in functions.php for paFileDB 3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URL parameters, which is not properly cleansed in the $pageurl variable, as demon...
Php Arena Pafiledb 3.1
6.4
CVSSv2
CVE-2005-0475
SQL injection vulnerability in paFAQ Beta4, and possibly other versions, allows remote malicious users to execute arbitrary SQL code via the (1) offset, (2) limit, (3) order, or (4) orderby parameter to question.php, (5) offset parameter to answer.php, (6) search_item parameter t...
Php Arena Pafaq Beta4
4 EDB exploits
6.8
CVSSv2
CVE-2005-0485
Cross-site scripting (XSS) vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote malicious users to inject arbitrary HTML and web script via the showpost parameter.
Phparena Panews 2.0b4
6.8
CVSSv2
CVE-2021-33564
An argument injection vulnerability in the Dragonfly gem prior to 1.4.0 for Ruby allows remote malicious users to read and write to arbitrary files via a crafted URL when the verify_url option is disabled. This may lead to code execution. The problem occurs because the generate a...
Dragonfly Project Dragonfly
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4