2 matches found
CVE-2020-10401
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-article.php by adding a question mark ? followed by the payload...
CVE-2020-10401
CVE-2020-10401: Chadha PHPKB Standard Multi-Language 9 is affected via URIs in admin/header.php, enabling Reflected XSS in admin/edit-article.php when a payload is appended after a question mark. Documented impact is Reflected XSS with arbitrary script/HTML injection; CVSS base score ~4.8 (MEDIUM...