| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-2000 | 7.5 |
Multiple SQL injection vulnerabilities in paFileDB 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the formname parameter (1) in the login form, (2) in the team login form, or (3) to auth.php, (4) select, (5) id, or (6) q
|
18-10-2016 - 03:23 | 15-06-2005 - 04:00 | |
| CVE-2005-2001 | 5.0 |
Directory traversal vulnerability in pafiledb.php in paFileDB 3.1 and earlier allows remote attackers to include arbitrary files via a .. (dot dot) in the action parameter.
|
18-10-2016 - 03:23 | 15-06-2005 - 04:00 | |
| CVE-2005-1999 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in pafiledb.php in paFileDB 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) sortby or (2) filelist parameters to the category action (category.php), or (3) pages parame
|
18-10-2016 - 03:23 | 15-06-2005 - 04:00 |