Описание
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-1929
- http://online.securityfocus.com/archive/1/296387
- http://www.iss.net/security_center/static/10416.php
- http://www.securiteam.com/unixfocus/6J00Q0A5PK.html
- http://www.securityfocus.com/bid/6018
- http://www.securityfocus.com/bid/6019
- http://www.securityfocus.com/bid/6020
EPSS
Процентиль: 73%
0.0076
Низкий
CVE ID
Связанные уязвимости
nvd
около 23 лет назад
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
EPSS
Процентиль: 73%
0.0076
Низкий