Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:39 p.m.7 views

CVE-2020-10387

Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence ../ via the GET parameter file...

4.9CVSS6.9AI score0.07844EPSS
Exploits5References1
0day.today
0day.today
added 2020/03/17 12:0 a.m.218 views

PHPKB Multi-Language 9 Authenticated Directory Traversal Exploit

Exploit for php platform in category web applications Exploit Title: PHPKB Multi-Language 9 - Authenticated Directory Traversal Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version:...

4CVSS5.7AI score0.07844EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/03/16 12:0 a.m.113 views

PHPKB Multi-Language 9 Authenticated Directory Traversal

Exploit Title: PHPKB Multi-Language 9 - Authenticated Directory Traversal Google Dork: N/A Date: 2020-03-15 Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version: Multi-Language v9 Tested on:...

4CVSS5.2AI score0.07844EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/03/16 12:0 a.m.208 views

PHPKB Multi-Language 9 - Authenticated Directory Traversal

Exploit Title: PHPKB Multi-Language 9 - Authenticated Directory Traversal Google Dork: N/A Date: 2020-03-15 Exploit Author: Antonio Cannito Vendor Homepage: https://www.knowledgebase-script.com/ Software Link: https://www.knowledgebase-script.com/pricing.php Version: Multi-Language v9 Tested on:...

4.9CVSS5.2AI score0.07844EPSS
Exploits5
NVD
NVD
added 2020/03/12 2:15 p.m.40 views

CVE-2020-10387

Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence ../ via the GET parameter file...

4.9CVSS5.1AI score0.07844EPSS
Exploits5References4
Cvelist
Cvelist
added 2020/03/12 1:3 p.m.37 views

CVE-2020-10387

Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence ../ via the GET parameter file...

5AI score0.07844EPSS
Exploits5References4
CVE
CVE
added 2020/03/12 1:3 p.m.84 views

CVE-2020-10387

CVE-2020-10387 describes a path traversal vulnerability in Chadha PHPKB Standard Multi-Language 9, exposed via the admin/download.php endpoint. The flaw allows traversal of the server file system through the GET parameter “file” (using dot-dot-slash sequences), enabling arbitrary file download. P...

4.9CVSS5AI score0.07844EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder