Lucene search
K

142 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.10 views

CVE-2020-10457

Path Traversal in admin/imagepaster/image-renaming.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to rename any file on the webserver using a dot-dot-slash sequence ../ via the POST parameter imgName for the new name and imgUrl for the current file to be renamed...

4CVSS6.9AI score0.01084EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-2947

Malware in sbrugna...

4.3CVSS4.9AI score0.00485EPSS
Exploits1References3
0day.today
0day.today
added 2020/03/17 12:0 a.m.266 views

PHPKB Multi-Language 9 Authenticated Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: PHPKB Multi-Language 9 - Authenticated Remote Code Execution Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version:...

7AI score0.04884EPSS
Exploits5
CNVD
CNVD
added 2020/03/13 12:0 a.m.7 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18656)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/13 12:0 a.m.4 views

Chadha PHPKB cross-site scripting vulnerability (CNVD-2020-17367)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflected cross-site scripting vulnerability exists in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language version 9...

4.8CVSS6AI score0.00611EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/13 12:0 a.m.3 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18655)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS
Exploits1References1
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-10490

CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a department via a crafted request...

4.3CVSS5.8AI score0.00485EPSS
Exploits1References2
OSV
OSV
added 2020/03/12 2:15 p.m.5 views

CVE-2020-10498

CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a category, given the id, via a crafted request...

6.5CVSS6.6AI score0.0055EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.46 views

CVE-2020-10487

CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a glossary term via a crafted request...

4.3CVSS4.5AI score0.00535EPSS
Exploits3References2
NVD
NVD
added 2020/03/12 2:15 p.m.23 views

CVE-2020-10486

CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a comment via a crafted request...

4.3CVSS4.5AI score0.00475EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.27 views

CVE-2020-10498

CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a category, given the id, via a crafted request...

6.5CVSS6.3AI score0.0055EPSS
Exploits1References2
OSV
OSV
added 2020/03/12 2:15 p.m.6 views

CVE-2020-10497

CSRF in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a category via a crafted request...

6.5CVSS6.6AI score0.0055EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.23 views

CVE-2020-10472

Reflected XSS in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.19 views

CVE-2020-10477

Reflected XSS in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.23 views

CVE-2020-10481

CSRF in admin/add-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new glossary term via a crafted request...

4.3CVSS4.5AI score0.00475EPSS
Exploits1References2
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-10473

Reflected XSS in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS5.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.22 views

CVE-2020-10475

Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.24 views

CVE-2020-10471

Reflected XSS in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS4.9AI score0.00733EPSS
Exploits1References2
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-10474

Reflected XSS in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...

4.8CVSS5.9AI score0.00611EPSS
Exploits1References2
NVD
NVD
added 2020/03/12 2:15 p.m.25 views

CVE-2020-10462

Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...

4.8CVSS4.9AI score0.00611EPSS
Exploits1References2
Rows per page
Query Builder