CVE-2020-10422

Summary: CVE-2020-10422 affects Chadha PHPKB Standard Multi-Language 9. The issue lies in URI handling in admin/header.php, enabling a Reflected XSS vulnerability in admin/manage-drafts.php when a URL is crafted with a leading caret (?) followed by the payload. This can inject arbitrary script/HT...

CVE-2020-10422

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-drafts.php by adding a question mark ? followed by the payload...

CVE-2020-10421

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-departments.php by adding a question mark ? followed by the payload...

CVE-2020-10419

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-categories.php by adding a question mark ? followed by the payload...

CVE-2020-10418

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-attachments.php by adding a question mark ? followed by the payload...

CVE-2020-10417

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-articles.php by adding a question mark ? followed by the payload...

CVE-2020-10417

Vulnerability overview (CVE-2020-10417) : Red Hat and NVD documents describe a Reflected XSS in Chadha PHPKB Standard Multi-Language 9. The issue occurs in URI handling within admin/header.php and is triggered when an attacker crafts a URL (e.g., a query string after a ?) that is reflected into p...

CVE-2020-10416

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/kb-backup.php by adding a question mark ? followed by the payload...

CVE-2020-10416

Technical details for CVE-2020-10416 are not provided in the connected documents. Public specifics such as affected versions, components, or fixes are not available here; monitor for updates.

CVE-2020-10415

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/index.php by adding a question mark ? followed by the payload...

CVE-2020-10415

CVE-2020-10415 concerns Chadha PHPKB Standard Multi-Language 9. The issue is a Reflected XSS in URIs processed by admin/header.php, enabling an attacker to inject arbitrary script/HTML via a crafted query string (e.g., a payload following a ?). Related Red Hat entries (CVE-2020-10391 and CVE-2020...

CVE-2020-10413

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/import-html.php by adding a question mark ? followed by the payload...

CVE-2020-10411

The CVE-2020-10411 issue affects Chadha PHPKB Standard Multi-Language 9. The root cause is improper handling of URIs in admin/header.php, enabling Reflected XSS by inserting a payload after a question mark in admin/indexed admin pages (e.g., admin/email-harvester.php per the Initial Description)....

CVE-2020-10410

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-user.php by adding a question mark ? followed by the payload...

CVE-2020-10409

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-template.php by adding a question mark ? followed by the payload...

CVE-2020-10409

Summary: CVE-2020-10409 affects Chadha PHPKB Standard Multi-Language 9; URIs parsed in admin/header.php allow a Reflected XSS in admin/edit-template.php when a payload is injected after a question mark. Affected: Chadha PHPKB Standard Multi-Language 9 (admin area). Root cause (as stated): URI han...

CVE-2020-10408

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-subscriber.php by adding a question mark ? followed by the payload...

CVE-2020-10408

The CVE-2020-10408 entry affects Chadha PHPKB Standard Multi-Language 9. Reflected XSS is possible via URIs processed in admin/header.php, affecting admin/edit-subscriber.php when a payload is injected after a question mark. Red Hat entries corroborate the same issue affecting admin/add-article.p...

CVE-2020-10407

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-news.php by adding a question mark ? followed by the payload...

CVE-2020-10407

The issue is a reflected XSS in Chadha PHPKB Standard Multi-Language 9 caused by how URIs are parsed in admin/header.php. The cve description notes it can be triggered in admin/edit-news.php by appending a payload after a question mark. Red Hat entries corroborate the URI-based XSS pattern affect...