Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-17941)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflected cross-site scripting vulnerability exists in admin/report-article-rated.php in Chadha PHPKB Standard Multi-Language 9. T...

PT-2020-12114 · Chadha · Chadha Phpkb Standard Multi-Language

Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue concerns the handling of URIs in admin/header.php, which allows for Reflected XSS attacks. This can be exploited by adding a question mark ? followed by the payload in...