CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

317 matches found

Cvelist•added 2020/03/12 1:3 p.m.•19 views

CVE-2020-10392

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-category.php by adding a question mark ? followed by the payload...

5AI score0.00733EPSS

Exploits2References2

CVE•added 2020/03/12 1:3 p.m.•54 views

CVE-2020-10392

CVE-2020-10392 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are handled in admin/header.php, enabling Reflected XSS in pages such as admin/add-category.php when a payload is injected after a question mark in the URI. The Red Hat context confirms the same ...

4.8CVSS4.9AI score0.00733EPSS

Exploits2References2Affected Software1

Cvelist•added 2020/03/12 1:3 p.m.•20 views

CVE-2020-10391

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-article.php by adding a question mark ? followed by the payload...

5AI score0.00733EPSS

Exploits1References2

CVE•added 2020/03/12 1:3 p.m.•73 views

CVE-2020-10391

CVE-2020-10391 describes a reflected XSS in Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are handled in admin/header.php, enabling an attacker to inject script/HTML into admin/add-article.php by appending a payload after a question mark. The connected Red Hat CVE entries...

4.8CVSS4.9AI score0.00733EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2020/03/12 12:0 a.m.•1 views

PT-2020-12072 · Chadha · Chadha Phpkb Standard Multi-Language

Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue concerns the handling of URIs in admin/header.php, which allows for Reflected XSS attacks. This can be exploited in admin/edit-category.php by adding a question mark ?...

4.8CVSS5.5AI score0.00733EPSS

Exploits3References3

Positive Technologies•added 2020/03/12 12:0 a.m.•2 views

PT-2020-12089 · Chadha · Phpkb Standard Multi-Language

4.8CVSS5.4AI score0.00733EPSS

Exploits3References3

Positive Technologies•added 2020/03/12 12:0 a.m.•2 views

PT-2020-12063 · Chadha · Phpkb Standard Multi-Language

4.8CVSS5.4AI score0.00733EPSS

Exploits3References3

Positive Technologies•added 2020/03/12 12:0 a.m.•2 views

PT-2020-12104 · Chadha · Chadha Phpkb Standard Multi-Language

Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue concerns the handling of URIs in admin/header.php, which allows for Reflected XSS in admin/manage-versions.php. This can be achieved by adding a question mark ? followed by...

4.8CVSS5.2AI score0.00733EPSS

Exploits3References4

OSV•added 2020/01/11 3:15 a.m.•15 views

CVE-2019-20379

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

6.1CVSS5.8AI score

Exploits0References1

OSV•added 2020/01/11 3:15 a.m.•11 views

CVE-2019-20378

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter...

6.1CVSS5.7AI score

Exploits0References1

NVD•added 2020/01/11 3:15 a.m.•9 views

CVE-2019-20379

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

6.1CVSS6AI score0.00794EPSS

Exploits1References1

UbuntuCve•added 2020/01/11 3:15 a.m.•19 views

CVE-2019-20378

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter...

6.1CVSS6.3AI score0.01014EPSS

Exploits1References2

UbuntuCve•added 2020/01/11 3:15 a.m.•15 views

CVE-2019-20379

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

6.1CVSS6.3AI score0.00794EPSS

Exploits1References2

Prion•added 2020/01/11 3:15 a.m.•10 views

Cross site scripting

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php cs parameter...

4.3CVSS5.9AI score0.00794EPSS

Exploits1References1Affected Software1

Prion•added 2020/01/11 3:15 a.m.•7 views

Cross site scripting

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter...

4.3CVSS5.9AI score0.01014EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/01/11 3:1 a.m.•14 views

CVE-2019-20378

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter...

6AI score0.01014EPSS

Exploits1References1

Debian CVE•added 2020/01/11 3:1 a.m.•18 views

CVE-2019-20378

ganglia-web aka Ganglia Web Frontend through 3.7.5 allows XSS via the header.php ce parameter...

6.1CVSS6AI score0.01014EPSS

Exploits1

Prion•added 2019/09/09 1:15 p.m.•15 views

Remote code execution

In ATutor 2.2.4, an unauthenticated attacker can change the application settings and force it to use his crafted database, which allows him to gain access to the application. Next, he can change the directory that the application uploads files to, which allows him to achieve remote code execution...

7.5CVSS9.9AI score0.04783EPSS

Exploits1References2Affected Software1

Prion•added 2017/09/11 9:29 a.m.•12 views

Sql injection

SQL Injection exists in the EyesOfNetwork web interface aka eonweb 5.1-0 via the userid cookie to header.php, a related issue to CVE-2017-1000060...

7.5CVSS9.8AI score0.03458EPSS

Exploits2References1Affected Software1

NVD•added 2017/09/11 9:29 a.m.•14 views

CVE-2017-14247

SQL Injection exists in the EyesOfNetwork web interface aka eonweb 5.1-0 via the userid cookie to header.php, a related issue to CVE-2017-1000060...

9.8CVSS9.9AI score0.01454EPSS

Exploits1References1