2 matches found
CVE-2020-10461
The way comments in article.php vulnerable function in include/functions-article.php are handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored Blind XSS injecting arbitrary web script or HTML in admin/manage-comments.php, via the GET parameter cmt...
CVE-2020-10461
CVE-2020-10461 affects Chadha PHPKB Standard Multi-Language 9. the vulnerable path is article.php -> include/functions-article.php, allowing Stored (Blind) XSS in admin/manage-comments.php via the GET parameter cmt. Exploitation is documented as injecting arbitrary web script/HTML. A practical...