CVE-2005-0782

Name of the Vulnerable Software and Affected Versions paFileDB versions 3.1 and earlier

Description The issue is related to a cross-site scripting (XSS) vulnerability. It affects the viewall.php and category.php files, allowing remote attackers to inject arbitrary web script or HTML via the start parameter to pafiledb.php.

Recommendations For paFileDB versions 3.1 and earlier, update to a version later than 3.1 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable pafiledb.php endpoint, specifically the start parameter, until a patch is available.