317 matches found
CVE-2020-10446
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-category.php by adding a question mark ? followed by the payload...
CVE-2020-10444
CVE-2020-10444 affects Chadha PHPKB Standard Multi-Language 9. The Red Hat entries indicate URIs are mishandled in admin/header.php, enabling Reflected XSS in the admin interface. For CVE-2020-10444 specifically, the described vector targets admin/report-article-rated.php by adding a leading ? wi...
CVE-2020-10443
The connected Red Hat advisories describe a Reflected XSS in Chadha PHPKB Standard Multi-Language 9 stemming from how URIs are parsed in admin/header.php, with exploitation via a payload after a ? and affecting pages like admin/add-article.php/trash-box.php. They do not provide exact CVE-2020-104...
CVE-2020-10442
CVE-2020-10442 concerns Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are processed in admin/header.php, enabling Reflected XSS in multiple admin pages (e.g., admin/report-article-popular.php; per Red Hat advisories, related entries show affected paths such as admin/add-a...
CVE-2020-10442
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-article-popular.php by adding a question mark ? followed by the payload...
CVE-2020-10438
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/reply-ticket.php by adding a question mark ? followed by the payload...
CVE-2020-10438
CVE-2020-10438 affects Chadha PHPKB Standard Multi-Language 9: the URI handling in admin/header.php enables Reflected XSS in admin/reply-ticket.php when a payload is injected after a '?'. The Red Hat CVEs confirm similar patterns for related endpoints (e.g., admin/add-article.php), but the provid...
CVE-2020-10437
CVE-2020-10437 affects Chadha PHPKB Standard Multi-Language 9. The Red Hat records confirm that URIs handled in admin/header.php allow Reflected XSS by injecting a payload after a question mark, affecting admin/add-article.php, admin/trash-box.php, and admin/optimize-database.php via the same pat...
CVE-2020-10433
The CVE pertains to Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are handled in admin/header.php, enabling reflected XSS by appending a question mark and payload to the URL. Red Hat records link similar vectors affecting admin pages (e.g., add-article.php, trash-box.php)...
CVE-2020-10432
The CVE-2020-10432 entry applies to Chadha PHPKB Standard Multi-Language 9, where URI handling in admin/header.php enables a Reflected XSS in admin/manage-tickets.php when a leading question mark is followed by a payload. The Red Hat CVE records corroborate a similar issue affecting admin/header....
CVE-2020-10432
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-tickets.php by adding a question mark ? followed by the payload...
CVE-2020-10431
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-templates.php by adding a question mark ? followed by the payload...
CVE-2020-10431
CVE-2020-10431 affects Chadha PHPKB Standard Multi-Language 9. URI handling in admin/header.php enables Reflected XSS by appending a ? payload to admin/manage-templates.php (and similar admin pages). Red Hat advisories confirm the same root cause across multiple admin endpoints (e.g., add-article...
CVE-2020-10430
The CVE-2020-10430 entry concerns Chadha PHPKB Standard Multi-Language 9. The Red Hat Red Hat CVEs map this vulnerability to UI URI handling in admin/header.php that enables Reflected XSS in subsequent admin pages (notably admin/manage-subscribers.php; other RH entries reference admin/add-article...
CVE-2020-10429
CVE-2020-10429 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are handled in admin/header.php, enabling Reflected XSS in admin/manage-settings.php when a payload is appended after a question mark. The description notes injection of arbitrary scripts/HTML vi...
CVE-2020-10428
CVE-2020-10428 affects Chadha PHPKB Standard Multi-Language 9. The issue is a Reflected XSS in URI handling via admin/header.php, enabling injection of arbitrary script/HTML on several admin pages when a payload is added after a question mark in the URI (e.g., admin/manage-news.php and related pa...
CVE-2020-10427
CVE-2020-10427 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are parsed in admin/header.php, allowing Reflected XSS in admin/manage-languages.php by appending a question mark and payload to the URL. Red Hat CVE entries for this family (CVE-2020-10391, CVE-...
CVE-2020-10426
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-groups.php by adding a question mark ? followed by the payload...
CVE-2020-10426
CVE-2020-10426 concerns Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are processed in admin/header.php, enabling Reflected XSS by appending a payload after a question mark to admin pages (as shown for manage-groups.php; related Red Hat entries also reference add-article....
CVE-2020-10425
The provided connected documents identify a Reflected XSS in Chadha PHPKB Standard Multi-Language 9, caused by how URIs are handled in admin/header.php. The vulnerability is triggered by crafting a URI with a leading question mark and a payload, affecting admin pages such as admin/manage-glossary...