CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

RedhatCVE•added 2026/01/09 9:53 a.m.•8 views

CVE-2020-10400

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/article-collaboration.php by adding a question mark ? followed by the payload...

4.8CVSS6.1AI score0.00611EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-2895

Malware in sbrugna...

4.8CVSS5AI score0.00733EPSS

Exploits3References3

OSV•added 2025/09/05 8:15 p.m.•4 views

CVE-2025-10026

A vulnerability was found in itsourcecode POS Point of Sale System 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory/main/vendors/datatables/unittesting/templates/-complexheader.php. The manipulation of the argument scripts results in cross site scripting. It ...

6.1CVSS4.3AI score0.00264EPSS

Exploits1References5

Tenable Nessus•added 2025/08/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2019-20378

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter. CVE-2019-20378 Note that Nessus relies on the presence of the...

6.1CVSS6.4AI score0.01014EPSS

Exploits1References3

RedhatCVE•added 2025/04/30 12:6 a.m.•13 views

CVE-2015-4582

The TheCartPress boot-store aka Boot Store theme 1.6.4 for WordPress allows header.php tcpregistererror XSS. NOTE: CVE-2015-4582 is not assigned to any Oracle product...

7.2CVSS6.8AI score0.00189EPSS

Exploits0References1

OSV•added 2024/11/19 9:15 p.m.•5 views

DEBIAN-CVE-2024-52762

A cross-site scripting XSS vulnerability in the component /master/header.php of Ganglia-web v3.73 to v3.76 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "tz" parameter...

5.4CVSS5.3AI score0.00752EPSS

Exploits1References1

OSV•added 2023/10/26 8:15 p.m.•3 views

CVE-2023-44267

Online Art Gallery v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'lnm' parameter of the header.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS7.4AI score0.00684EPSS

Exploits1References2

ATTACKERKB•added 2023/09/11 8:15 p.m.•3 views

CVE-2023-40944

Schoolmate 1.3 is vulnerable to SQL Injection in the variable $schoolname from Database at \header.php...

9.8CVSS5.8AI score0.00629EPSS

Exploits1References2

CNVD•added 2020/03/13 12:0 a.m.•1 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18657)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•1 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18658)

4.8CVSS6.4AI score0.00611EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•3 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-17954)

4.8CVSS6.4AI score0.00733EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•3 views

Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-17945)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflected cross-site scripting vulnerability exists in admin/report-article-mailed.php in Chadha PHPKB Standard Multi-Language 9...

4.8CVSS6.1AI score0.00611EPSS

Exploits1References1

OSV•added 2020/03/12 2:15 p.m.•1 views

CVE-2020-10445

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-article.php by adding a question mark ? followed by the payload...

4.8CVSS5.9AI score0.00733EPSS

Exploits3References2

Positive Technologies•added 2020/03/12 12:0 a.m.•3 views

PT-2020-12103 · Chadha · Phpkb Standard Multi-Language

Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue concerns the handling of URIs in admin/header.php, which allows for Reflected XSS attacks. This can be exploited in admin/manage-users.php by adding a question mark ?...

4.8CVSS5.4AI score0.00733EPSS

Exploits3References3

OSV•added 2020/01/11 3:15 a.m.•4 views

DEBIAN-CVE-2019-20379

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

6.1CVSS6AI score0.00794EPSS

Exploits1References1

OSV•added 2020/01/11 3:15 a.m.•2 views

UBUNTU-CVE-2019-20379

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

6.1CVSS5.8AI score0.00794EPSS

Exploits1References3