VULHUB ™

paFileDB is reported prone to a cross-site scripting vulnerability. The vulnerability presents itself when an attacker supplies malicious HTML and script code through the 'id' parameter. This may allow for theft of cookie-based authentication credentials or other attacks. paFileDB 3.1 and prior versions are affected by this vulnerability. This issue may be related to BID 12788 (PAFileDB Multiple SQL Injection And Cross-Site Scripting Vulnerabilities) and BID 12758 (PHP Arena PAFileDB Multiple Remote Cross Site Scripting Vulnerabilities). This BID will be retired or updated upon further analysis.

paFileDB is reported prone to a cross-site scripting vulnerability. The vulnerability presents itself when an attacker supplies malicious HTML and script code through the 'id' parameter. This may allow for theft of cookie-based authentication credentials or other attacks. paFileDB 3.1 and prior versions are affected by this vulnerability. This issue may be related to BID 12788 (PAFileDB Multiple SQL Injection And Cross-Site Scripting Vulnerabilities) and BID 12758 (PHP Arena PAFileDB Multiple Remote Cross Site Scripting Vulnerabilities). This BID will be retired or updated upon further analysis.