Unrated severityNVD Advisory· Published Mar 12, 2005· Updated Apr 16, 2026

CVE-2005-0780

Description

paFileDB 3.1 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) auth.php, (2) login.php, (3) category.php, (4) file.php, (5) team.php, (6) license.php, (7) custom.php, (8) admins.php, or (9) backupdb.php, which reveal the path in a PHP error message.

Affected products

Php Arena/Pafiledb5 versions
cpe:2.3:a:php_arena:pafiledb:1.1.3:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:php_arena:pafiledb:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:php_arena:pafiledb:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:php_arena:pafiledb:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:php_arena:pafiledb:3.0_beta_3.1:*:*:*:*:*:*:*
- cpe:2.3:a:php_arena:pafiledb:3.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000