855 matches found
CVE-2020-10477
CVE-2020-10477 is a reflected Cross-Site Scripting vulnerability affecting Chadha PHPKB Standard Multi-Language 9. The issue occurs in admin/manage-news.php through the GET parameter sort , allowing injection of arbitrary web script or HTML. Root cause: insufficient sanitization of the sort param...
CVE-2020-10476
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10476
CVE-2020-10476 is a reflected cross-site scripting vulnerability in Chadha PHPKB Standard Multi-Language 9. The flaw resides in admin/manage-glossary.php, where an unsanitized GET parameter sort can inject arbitrary web script or HTML. Red Hat and CNVD entries corroborate the same issue. Impact i...
CVE-2020-10475
Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10475
Summary: CVE-2020-10475 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability is a reflected XSS in admin/manage-tickets.php, exploitable via the GET parameter sort. The impact is injecting arbitrary web script/HTML through user-controlled input. The public docs indicate the vulnerabl...
CVE-2020-10474
The CVE-2020-10474 entry covers Chadha PHPKB Standard Multi-Language 9, with a reflected XSS in admin/manage-comments.php exploitable via the GET sort parameter. The root cause is insufficient input validation for the sort parameter, allowing arbitrary script/HTML injection and potential impact t...
CVE-2020-10473
Reflected XSS in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10473
CVE-2020-10473 : A reflected cross-site scripting vulnerability in Chadha PHPKB Standard Multi-Language 9 affects the admin/manage-categories.php page. The issue arises from the GET parameter sort , allowing an attacker to inject arbitrary script/HTML. Affected component: PHPKB Core (admin UI). I...
CVE-2020-10472
Reflected XSS in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10472
Summary: CVE-2020-10472 is a reflected XSS vulnerability in Chadha PHPKB Standard Multi-Language 9, specifically in the admin/manage-templates.php page where the GET parameter “sort” can be tainted to inject arbitrary scripts. The affected component is the web application’s template management in...
CVE-2020-10471
Reflected XSS in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10471
CVE-2020-10471 affects Chadha PHPKB Standard Multi-Language 9. It exposes a reflected XSS flaw in admin/manage-articles.php via the GET parameter sort, allowing injection of arbitrary script/HTML. The issue is caused by improper handling/sanitization of the sort parameter. The provided connected ...
CVE-2020-10470
The CVE-2020-10470 issue affects Chadha PHPKB Standard Multi-Language version 9, where a Reflected XSS exists in admin/manage-fields.php through the GET parameter sort. Attackers can inject arbitrary web script or HTML. The primary affected component is the sort parameter in the admin/manage-fiel...
CVE-2020-10469
Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10469
CVE-2020-10469 affects Chadha PHPKB Standard Multi-Language 9. Affected component: the GET parameter sort on the admin/manage-departments.php page. Root cause: reflected cross-site scripting (XSS) vulnerability that allows injecting arbitrary web script/HTML. Exploitation details are described in...
CVE-2020-10468
CVE-2020-10468 is a reflected XSS vulnerability in Chadha PHPKB Standard Multi-Language 9, exploitable via the GET parameter p in admin/edit-news.php. Reported across multiple sources (NVD, Red Hat, CNVD, CVE listings) with the same description: an attacker can inject arbitrary web script or HTML...
CVE-2020-10467
Reflected XSS in admin/edit-comment.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
CVE-2020-10467
CVE-2020-10467 corresponds to a reflected XSS in Chadha PHPKB Standard Multi-Language 9. The vulnerability arises in admin/edit-comment.php via the GET parameter p, allowing injection of arbitrary script/HTML. Affected software: Chadha PHPKB Standard Multi-Language version 9. Underlying issue: in...
CVE-2020-10466
Reflected XSS in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p...
CVE-2020-10466
CVE-2020-10466 affects Chadha PHPKB Standard Multi-Language 9. It is a reflected XSS in admin/edit-glossary.php triggered via the GET parameter p, allowing injection of arbitrary script/HTML. No exploit details are provided in the documents. A related PTSecurity advisory (PT-2020-12136) suggests ...