CVE-2020-10437

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/optimize-database.php by adding a question mark ? followed by the payload...

CVE-2020-10436

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/my-profile.php by adding a question mark ? followed by the payload...

CVE-2020-10436

CVE-2020-10436 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability is a Reflected XSS in the URI handling of admin/header.php, enabling injection of arbitrary scripts/HTML in admin/my-profile.php when a crafted URI containing a leading question mark and payload is used. The Red Hat ...

CVE-2020-10435

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/my-languages.php by adding a question mark ? followed by the payload...

CVE-2020-10435

The CVE-2020-10435 entry concerns Chadha PHPKB Standard Multi-Language 9. Red Hat AR entries describe a Reflected XSS vulnerability stemming from URI handling in admin/header.php, allowing an attacker to inject scripts by appending a payload after a ? in URIs such as admin/my-languages.php (and r...

CVE-2020-10434

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-versions.php by adding a question mark ? followed by the payload...

CVE-2020-10434

CVE-2020-10434 concerns Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are processed in admin/header.php, enabling a Reflected XSS by appending a question mark followed by payload to admin/manage-versions.php. Connected Red Hat CVEs (CVE-2020-10391 and CVE-2020-10456) desc...

CVE-2020-10433

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-users.php by adding a question mark ? followed by the payload...

CVE-2020-10433

The CVE pertains to Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are handled in admin/header.php, enabling reflected XSS by appending a question mark and payload to the URL. Red Hat records link similar vectors affecting admin pages (e.g., add-article.php, trash-box.php)...

CVE-2020-10431

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-templates.php by adding a question mark ? followed by the payload...

CVE-2020-10431

CVE-2020-10431 affects Chadha PHPKB Standard Multi-Language 9. URI handling in admin/header.php enables Reflected XSS by appending a ? payload to admin/manage-templates.php (and similar admin pages). Red Hat advisories confirm the same root cause across multiple admin endpoints (e.g., add-article...

CVE-2020-10430

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-subscribers.php by adding a question mark ? followed by the payload...

CVE-2020-10430

The CVE-2020-10430 entry concerns Chadha PHPKB Standard Multi-Language 9. The Red Hat Red Hat CVEs map this vulnerability to UI URI handling in admin/header.php that enables Reflected XSS in subsequent admin pages (notably admin/manage-subscribers.php; other RH entries reference admin/add-article...

CVE-2020-10429

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-settings.php by adding a question mark ? followed by the payload...

CVE-2020-10429

CVE-2020-10429 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are handled in admin/header.php, enabling Reflected XSS in admin/manage-settings.php when a payload is appended after a question mark. The description notes injection of arbitrary scripts/HTML vi...

CVE-2020-10427

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-languages.php by adding a question mark ? followed by the payload...

CVE-2020-10427

CVE-2020-10427 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are parsed in admin/header.php, allowing Reflected XSS in admin/manage-languages.php by appending a question mark and payload to the URL. Red Hat CVE entries for this family (CVE-2020-10391, CVE-...

CVE-2020-10426

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-groups.php by adding a question mark ? followed by the payload...

CVE-2020-10426

CVE-2020-10426 concerns Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are processed in admin/header.php, enabling Reflected XSS by appending a payload after a question mark to admin pages (as shown for manage-groups.php; related Red Hat entries also reference add-article....

CVE-2020-10425

The provided connected documents identify a Reflected XSS in Chadha PHPKB Standard Multi-Language 9, caused by how URIs are handled in admin/header.php. The vulnerability is triggered by crafting a URI with a leading question mark and a payload, affecting admin pages such as admin/manage-glossary...