Phpkb

phpkb

Vendor: Chadhaajay • 119 CVEs

CVEs (119)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-10404 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-field.php by adding a question mark (?) followed by the p...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-field.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10403 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-comment.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-comment.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10402 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-category.php by adding a question mark (?) followed by th...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-category.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10401 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-article.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-article.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10400 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/article-collaboration.php by adding a question mark (?) follow...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/article-collaboration.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10399 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-user.php by adding a question mark (?) followed by the pay...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-user.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10398 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10397 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-news.php by adding a question mark (?) followed by the pay...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-news.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10396 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10395 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-group.php by adding a question mark (?) followed by the pa...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-group.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10394 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10393 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-field.php by adding a question mark (?) followed by the pa...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-field.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10392 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-category.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-category.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10391 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-article.php by adding a question mark (?) followed by the...Show more The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-article.php by adding a question mark (?) followed by the payload.Show less
CVE-2020-10390 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 OS Command Injection in export.php (vulnerable function called from include/functions-article.php) in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by saving the code to be exec...Show more OS Command Injection in export.php (vulnerable function called from include/functions-article.php) in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by saving the code to be executed as the wkhtmltopdf path via admin/save-settings.php.Show less
CVE-2020-10389 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 admin/save-settings.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by injecting PHP code into any POST parameter when saving global settings.
CVE-2020-10388 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The way the Referer header in article.php is handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/report-referrers.php (vulner...Show more The way the Referer header in article.php is handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/report-referrers.php (vulnerable file admin/include/functions-articles.php).Show less
CVE-2020-10387 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence (../) via the GET parameter file.
CVE-2020-10386 1Chadhaajay 1Phpkb Nov 21, 2024 Mar 12, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 admin/imagepaster/image-upload.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by uploading a .php file in the admin/js/ directory.

Previous 1 2 3 4 56