CVE-2020-10433
The CVE pertains to Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are handled in admin/header.php, enabling reflected XSS by appending a question mark and payload to the URL. Red Hat records link similar vectors affecting admin pages (e.g., add-article.php, trash-box.php)...