Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:50 a.m.3 views

CVE-2020-10438

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/reply-ticket.php by adding a question mark ? followed by the payload...

4.8CVSS6.1AI score0.00321EPSS
Exploits1References1
Circl
Circladded 2025/09/25 9:54 a.m.0 views

CVE-2025-10438

creationtimestamp| type| source ---|---|--- 2025-09-25 09:54:02+00:00| seen| Telegram/nVzHepSfaC071SW1LdIPncBdfhTtXYFTtKfhgpML-rwLM4...

8.6CVSS4.8AI score0.00058EPSS
Exploits0
Circl
Circladded 2024/10/28 5:17 a.m.0 views

CVE-2024-10438

creationtimestamp| type| source ---|---|--- 2024-10-28 05:17:14+00:00| seen| https://t.me/cvedetector/9087...

7.5CVSS4.8AI score0.00091EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/10/28 2:46 a.m.17 views

CVE-2024-10438 Sunnet eHRD CTMS - Authentication Bypass

The eHRD CTMS from Sunnet has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to bypass authentication by satisfying specific conditions in order to access certain functionalities...

7.5CVSS0.00091EPSS
Exploits0References2
CVE
CVEadded 2020/03/12 1:4 p.m.44 views

CVE-2020-10438

CVE-2020-10438 affects Chadha PHPKB Standard Multi-Language 9: the URI handling in admin/header.php enables Reflected XSS in admin/reply-ticket.php when a payload is injected after a '?'. The Red Hat CVEs confirm similar patterns for related endpoints (e.g., admin/add-article.php), but the provid...

4.8CVSS4.9AI score0.00321EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2020/03/12 1:4 p.m.16 views

CVE-2020-10438

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/reply-ticket.php by adding a question mark ? followed by the payload...

5AI score0.00321EPSS
Exploits1References2
CVE
CVEadded 2019/10/16 1:0 p.m.106 views

CVE-2019-10438

Jenkins CRX Content Package Deployer Plugin suffered a missing permission check in versions 1.8.1 and earlier, allowing attackers with Overall/Read to connect to an attacker-specified URL using attacker-specified credentials IDs retrieved through another method, thereby capturing credentials stor...

6.5CVSS6.3AI score0.00048EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2018/04/18 2:0 p.m.52 views

CVE-2016-10438

CVE-2016-10438 is an information exposure issue in Android devices affected by Qualcomm Small Cell SoC, Snapdragon Mobile and Wear FSM9055, IPQ4019/IPQ8064, and various SD/SoC families. The root cause is logging of debug statements using %p, which could expose kernel or driver pointers. The repor...

7.5CVSS7.7AI score0.00216EPSS
Exploits0References2Affected Software1
Circl
Circladded 2009/12/14 12:0 a.m.1 views

CVE-2009-4828

creationtimestamp| type| source ---|---|--- 2009-12-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10438...

6.8CVSS5.8AI score0.00207EPSS
Exploits1References1
Rows per page
Query Builder