Low severity2.7NVD Advisory· Published Mar 12, 2020· Updated Jun 17, 2026
CVE-2020-10459
CVE-2020-10459
Description
Path Traversal in admin/assetmanager/assetmanager.php (vulnerable function saved in admin/assetmanager/functions.php) in Chadha PHPKB Standard Multi-Language 9 allows attackers to list the files that are stored on the webserver using a dot-dot-slash sequence (../) via the POST parameter inpCurrFolder.
Affected products
2- Chadha PHPKB/Standard Multi-Languagedescription
Patches
Vulnerability mechanics
References
2- antoniocannito.itnvdExploitThird Party Advisory
- antoniocannito.it/phpkb1nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.