CVE-2020-10410

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-user.php by adding a question mark ? followed by the payload...

CVE-2025-10410

creationtimestamp| type| source ---|---|--- 2025-09-14 22:56:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lytfaxav4j2j...

CVE-2024-10410

creationtimestamp| type| source ---|---|--- 2024-10-27 05:52:06+00:00| seen| https://t.me/cvedetector/9048...

CVE-2024-10410

A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. Affected by this vulnerability is the function upload of the file /admin/modroom/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. The attack can b...

CVE-2024-10410 SourceCodester Online Hotel Reservation System controller.php upload unrestricted upload

A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation System 1.0. Affected by this vulnerability is the function upload of the file /admin/modroom/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. The attack can b...

CVE-2020-10410

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-user.php by adding a question mark ? followed by the payload...

CVE-2020-10410

The CVE-2020-10410 entry corresponds to a Reflected XSS in Chadha PHPKB Standard Multi‑Language 9, triggered by manipulating URIs in admin/header.php to influence admin/edit-user.php (and related admin pages per connected RH records). Red Hat CVE records RH:CVE-2020-10410, RH:CVE-2020-10391, and ...

CVE-2019-10410

Jenkins Log Parser Plugin 2.0 and earlier did not escape an error message, resulting in a cross-site scripting vulnerability exploitable by users able to define log parsing rules...

CVE-2019-10410

The CVE-2019-10410 entry concerns Jenkins Log Parser Plugin, affected at versions 2.0 and earlier. The root cause is that an error message was not escaped, enabling cross-site scripting when a user can define log parsing rules. The vulnerability impact is visible in the documentation as a persist...

CVE-2016-10410

CVE-2016-10410 is a buffer overflow in RTP processing during VoLTE calls affecting Android devices with Qualcomm Snapdragon Mobile/Wear platforms (wide list of affected Snapdragon SoCs). The issue is documented as exploitable via network conditions and could impact confidentiality, integrity, and...

CVE-2017-10410

CVE-2017-10410 is a vulnerability in Oracle E-Business Suite’s Knowledge Management component (subcomponent: Search). Affected versions are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. The issue allows an unauthenticated attacker with network access via HTTP to compromise Or...

CVE-2017-10410

Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite subcomponent: Search. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network...

CVE-2017-10410

Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite subcomponent: Search. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network...