CVE-2020-10442
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/report-article-popular.php by adding a question mark ? followed by the payload...