2 matches found
CVE-2020-10474
Reflected XSS in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10474
The CVE-2020-10474 entry covers Chadha PHPKB Standard Multi-Language 9, with a reflected XSS in admin/manage-comments.php exploitable via the GET sort parameter. The root cause is insufficient input validation for the sort parameter, allowing arbitrary script/HTML injection and potential impact t...