Freearcadescript » Free Arcade Script : Security Vulnerabilities, CVEs, CVSS score >= 3
Cross-site scripting (XSS) vulnerability in Free Arcade Script 1.3 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter to the default URI under search/.
Max CVSS
4.3
EPSS Score
0.16%
Published
2009-08-14
Updated
2009-08-14
Directory traversal vulnerability in pages/play.php in Free Arcade Script 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.
Max CVSS
9.3
EPSS Score
0.48%
Published
2009-02-24
Updated
2017-09-29
2 vulnerabilities found