Freearcadescript Free Arcade Script vulnerabilities
2 known vulnerabilities affecting freearcadescript/free_arcade_script.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2009-0731P3CRITICALCVSS 9.3PoCv1.02009-02-24
CVE-2009-0731 [CRITICAL] CWE-22 CVE-2009-0731: Directory traversal vulnerability in pages/play.php in Free Arcade Script 1.0 allows remote attacker
Directory traversal vulnerability in pages/play.php in Free Arcade Script 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.
nvd
CVE-2009-2771P4MEDIUMCVSS 4.3v1.32009-08-14
CVE-2009-2771 [MEDIUM] CWE-79 CVE-2009-2771: Cross-site scripting (XSS) vulnerability in Free Arcade Script 1.3 allows remote attackers to inject
Cross-site scripting (XSS) vulnerability in Free Arcade Script 1.3 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter to the default URI under search/.
nvd