CVE-2002-1929

2005-06-2804:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.

References

online.securityfocus.com/archive/1/296387

www.iss.net/security_center/static/10416.php

www.securiteam.com/unixfocus/6J00Q0A5PK.html

www.securityfocus.com/bid/6018

www.securityfocus.com/bid/6019

www.securityfocus.com/bid/6020