CVE-2005-0485
Phparena Panews - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote attackers to inject arbitrary HTML and web script via the showpost parameter.
Scores
EPSS
0.0109
EPSS Percentile
77.7%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
phparena/panews
Timeline
Published
Mar 30, 2005
Tracked Since
Feb 18, 2026