Lucene search
K

111 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-2947

Malware in sbrugna...

4.3CVSS4.9AI score0.00485EPSS
Exploits1References3
0day.today
0day.today
added 2020/03/17 12:0 a.m.266 views

PHPKB Multi-Language 9 Authenticated Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: PHPKB Multi-Language 9 - Authenticated Remote Code Execution Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version:...

7AI score0.04884EPSS
Exploits5
CNVD
CNVD
added 2020/03/13 12:0 a.m.5 views

Chadha PHPKB cross-site scripting vulnerability (CNVD-2020-17367)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflected cross-site scripting vulnerability exists in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language version 9...

4.8CVSS6AI score0.00611EPSS
Exploits1References1
NVD
NVD
added 2020/03/12 2:15 p.m.27 views

CVE-2020-10498

CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a category, given the id, via a crafted request...

6.5CVSS6.3AI score0.0055EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.46 views

CVE-2020-10487

CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a glossary term via a crafted request...

4.3CVSS4.5AI score0.00535EPSS
Exploits3References2
NVD
NVD
added 2020/03/12 2:15 p.m.22 views

CVE-2020-10475

Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.24 views

CVE-2020-10471

Reflected XSS in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00733EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.23 views

CVE-2020-10472

Reflected XSS in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.24 views

CVE-2020-10481

CSRF in admin/add-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new glossary term via a crafted request...

4.3CVSS4.5AI score0.00475EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.20 views

CVE-2020-10477

Reflected XSS in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.25 views

CVE-2020-10462

Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.17 views

CVE-2020-10468

Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.21 views

CVE-2020-10453

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/search-users.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00733EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.18 views

CVE-2020-10455

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/translate.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00733EPSS
Exploits2References2
NVD
NVD
added 2020/03/12 2:15 p.m.19 views

CVE-2020-10454

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/sitemap-generator.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00733EPSS
Exploits2References2
NVD
NVD
added 2020/03/12 2:15 p.m.20 views

CVE-2020-10427

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-languages.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.31 views

CVE-2020-10425

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-glossary.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.28 views

CVE-2020-10429

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-settings.php by adding a question mark ? followed by the payload...

4.8CVSS5AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.82 views

CVE-2020-10390

OS Command Injection in export.php vulnerable function called from include/functions-article.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by saving the code to be executed as the wkhtmltopdf path via admin/save-settings.php...

7.2CVSS7.4AI score0.04326EPSS
Exploits1References2
Prion
Prion
added 2020/03/12 2:15 p.m.12 views

Cross site scripting

Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...

3.5CVSS4.8AI score0.00611EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder