Medium severity4.9NVD Advisory· Published Mar 12, 2020· Updated Jun 17, 2026
CVE-2020-10387
CVE-2020-10387
Description
Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence (../) via the GET parameter file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Chadha PHPKB/Chadha PHPKB Standard Multi-Languagedescription
- Range: = 9
Patches
Vulnerability mechanics
References
4- antoniocannito.itnvdExploitThird Party Advisory
- antoniocannito.it/phpkb1nvdExploitThird Party Advisory
- packetstormsecurity.com/files/156754/PHPKB-Multi-Language-9-Authenticated-Directory-Traversal.htmlnvdThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/48220nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.