153 matches found
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/index-attachments.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-article-popular.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/my-profile.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-comments.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/import-html.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-groups.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-language.php by adding a question mark ? followed by the payload...
Cross site scripting
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/email-harvester.php by adding a question mark ? followed by the payload...
CVE-2020-10456
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/trash-box.php by adding a question mark ? followed by the payload...
CVE-2020-10454
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/sitemap-generator.php by adding a question mark ? followed by the payload...
CVE-2020-10452
CVE-2020-10452 concerns Chadha PHPKB Standard Multi-Language 9. Reflected XSS via URIs processed in admin/header.php, enabling injection of script/HTML when an attacker crafts a URI that is passed to admin/add-article.php/save-article.php (and related admin pages as per connected Red Hat advisori...
CVE-2020-10451
CVE-2020-10451 affects Chadha PHPKB Standard Multi‑Language 9. The issue is in URI handling in admin/header.php, enabling Reflected XSS in admin/report-user.php when a ? payload is appended; documentation also notes similar URI handling XSS patterns in related Red Hat advisories (e.g., add-articl...
CVE-2020-10450
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-traffic.php by adding a question mark ? followed by the payload...
CVE-2020-10450
CVE-2020-10450 affects Chadha PHPKB Standard Multi-Language 9. The issue is a Reflected XSS in URIs handled by admin/header.php, exploitable via admin/report-traffic.php by appending a question mark and a payload. The Red Hat entries corroborate the same underlying vulnerability in related pages ...
CVE-2020-10449
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-search.php by adding a question mark ? followed by the payload...
CVE-2020-10448
CVE-2020-10448 corresponds to a reflected XSS vulnerability in Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are handled in admin/header.php, enabling injection of arbitrary script/HTML via a URI payload on various admin pages (e.g., admin/report-referrers.php, admin/add-...
CVE-2020-10446
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-category.php by adding a question mark ? followed by the payload...
CVE-2020-10444
CVE-2020-10444 affects Chadha PHPKB Standard Multi-Language 9. The Red Hat entries indicate URIs are mishandled in admin/header.php, enabling Reflected XSS in the admin interface. For CVE-2020-10444 specifically, the described vector targets admin/report-article-rated.php by adding a leading ? wi...
CVE-2020-10443
The connected Red Hat advisories describe a Reflected XSS in Chadha PHPKB Standard Multi-Language 9 stemming from how URIs are parsed in admin/header.php, with exploitation via a payload after a ? and affecting pages like admin/add-article.php/trash-box.php. They do not provide exact CVE-2020-104...
CVE-2020-10442
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-article-popular.php by adding a question mark ? followed by the payload...