32 matches found
Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-18325)
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflective cross-site scripting vulnerability exists in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9. The...
Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-18327)
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflective cross-site scripting vulnerability exists in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9. The...
Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-18324)
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflective cross-site scripting vulnerability exists in admin/edit-category.php in Chadha PHPKB Standard Multi-Language version 9...
Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-18334)
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflective cross-site scripting vulnerability exists in admin/edit-comment.php in Chadha PHPKB Standard Multi-Language version 9...
CVE-2020-10463
Reflected XSS in admin/edit-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
CVE-2020-10464
Reflected XSS in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
CVE-2020-10462
Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
Cross site scripting
Reflected XSS in admin/edit-comment.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
PT-2020-12137 · Chadha · Chadha Phpkb Standard Multi-Language
Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue allows attackers to inject arbitrary web script or HTML via the GET parameter p in the admin/edit-comment.php file. This enables attackers to perform a Reflected XSS attack...
qBit /pages/getPage parameter p SQL Injection
No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.api.request import req from pocsuite.api.poc import register from pocsuite.api.poc import Output, POCBase import re import random import hashlib class TestPOCPOCBase: vulID = '1' ssvid version = '1.0' author =...
Apache UTF-7 Encoding Cross-Site Scripting Vulnerability
Overview The modautoindex.c module in Apache HTTP Server is vulnerable to a cross-site scripting attack. When the charset on a server-generated page is undefined, the vulnerability allows attackers to inject arbitrary scripts or HTML via the P parameter using the UTF-7 charset. Impact An attacker...
CVE-2007-4805
CVE-2007-4805 affects fuzzylime (CMS) getgalldata.php in version 3.0 and earlier. A directory traversal flaw lets remote attackers include arbitrary local files by supplying .. in the p parameter. The root cause is unvalidated path input leading to local file inclusion. Public references in conne...