CVE-2004-1551

PHP Arena Pafiledb - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the (1) email or (2) file modules in paFileDB 3.1 Final allows remote attackers to execute arbitrary web script or HTML via the id parameter.

Exploits (1)

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/10667

View on exploitdb

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=109613031414184&w=2

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/17504

Scores

EPSS 0.0055

EPSS Percentile 67.5%

Classification

Status draft

Affected Products (1)

php_arena/pafiledb

Timeline

Published Dec 31, 2004

Tracked Since Feb 18, 2026