5.8 Medium
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.1%
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
online.securityfocus.com/archive/1/296387
www.iss.net/security_center/static/10416.php
www.securiteam.com/unixfocus/6J00Q0A5PK.html
www.securityfocus.com/bid/6018
www.securityfocus.com/bid/6019
www.securityfocus.com/bid/6020