Filtered by vendor Chadhaajay
Subscriptions
Total
119 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2020-10415 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/index.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10412 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/import-csv.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10469 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort. | ||||
CVE-2020-10452 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/save-article.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10389 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 7.2 High |
admin/save-settings.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by injecting PHP code into any POST parameter when saving global settings. | ||||
CVE-2020-10453 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/search-users.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10409 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-template.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10445 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/report-article.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10401 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-article.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10404 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-field.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10475 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort. | ||||
CVE-2020-10398 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10420 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-comments.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10422 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-drafts.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10394 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10396 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10388 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 5.4 Medium |
The way the Referer header in article.php is handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/report-referrers.php (vulnerable file admin/include/functions-articles.php). | ||||
CVE-2020-10430 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-subscribers.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10414 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/index-attachments.php by adding a question mark (?) followed by the payload. | ||||
CVE-2020-10426 | 1 Chadhaajay | 1 Phpkb | 2024-08-04 | 4.8 Medium |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/manage-groups.php by adding a question mark (?) followed by the payload. |