35 matches found
paFaq10beta4.txt
GulfTech Security Research June 20th, 2005 Vendor : php Arena URL : http://www.phparena.net/pafaq.php Version : paFAQ 1.0 Beta 4 Risk : Multiple Vulnerabilities Description: paFAQ is a FAQ/Knowledge base system that allows webmasters to keep an organized database of Frequently Asked Questions; a...
paFileDB113.pl.txt
!/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech + Advisory: http://www.securityfocus.com/bid/13967 Vulnerable...
Multiple paFileDB Vulnerabilities
GulfTech Security Research June 14th, 2005 Vendor : php Arena URL : http://www.phparena.net/pafiledb.php Version : paFileDB 3.1 && Earlier Risk : Multiple Vulnerabilities Description: paFileDB is a popular open source web application offered by php Arena. paFileDB allows webmasters to open up an...
PHP Arena <= 1.1.3 pafiledb.php Remote Change Password Exploit
No description provided by source. !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech + Advisory:...
PHP Arena 1.1.3 - 'pafiledb.php' Remote Change Password
!/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech + Advisory: https://www.securityfocus.com/bid/13967 Vulnerabl...
PHP Arena <= 1.1.3 pafiledb.php Remote Change Password Exploit
Exploit for unknown platform in category web applications ============================================================== PHP Arena mhp0rtal -- oilKarchack -- DrCephaleX -- Str0ke And...
PHP Arena 1.1.3 - pafiledb.php Remote Change Password
PHP Arena 1.1.3 - pafiledb.php Remote Change Password !/usr/bin/perl T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m EXPLOIT FOR: PHP Arena paFileDB 1.1.3 And 0lder Expl0it By: A l p h a P r o g r a m m e r Sirus-v Email: [email protected] + Discovered By: GulfTech +...
PHP Arena PAFileDB 3.1 - Multiple Cross-Site Scripting Vulnerabilities
PHP Arena PAFileDB 3.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/12758/info Multiple remote cross-site scripting vulnerabilities affect PHP Arena PaFileDB. These issues are due to a failure of the application to properly sanitize user-supplied input...
PHP Arena PAFileDB 3.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/12758/info Multiple remote cross-site scripting vulnerabilities affect PHP Arena PaFileDB. These issues are due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content. An attacke...
CVE-2005-0485
CVE-2005-0485 affects paNews 2.0b4 (PHP Arena). The vulnerability is an XSS in the file comment.php via the showpost parameter, caused by insufficient input sanitization. Remote attackers can inject arbitrary HTML/script when a user visits a malicious link. The impact is described as standard cli...
CVE-2005-0485
Cross-site scripting XSS vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote attackers to inject arbitrary HTML and web script via the showpost parameter...
CVE-2002-1931
Cross-site scripting XSS vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string...
CVE-2002-1929
Cross-site scripting XSS vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the 1 rate, 2 email, or 3 download actions...
XSS vulnerabilites in Pafiledb
INTRO Some of you may be familiar with Pafiledb provided by PHP arena. Well they just released a new version that fixed a problem with their counting of files. Along with that they said they fixed a possible security bug involving using Javascript as a search string. I checked it on my old versio...
PHP Arena PAFileDB 1.1.3/2.1.1/3.0 - 'Email To Friend' Cross-Site Scripting
source: https://www.securityfocus.com/bid/6018/info PHP Arena paFileDB is prone to cross-site scripting attacks. An attacker may construct a malicious link to the vulnerable script which contains arbitrary HTML and script code. If this link is visited by a web user, the attacker-supplied code wil...