VYPR

PHPKB Standard Multi-Language

by Chadha

CVEs (119)

  • CVE-2020-10404MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-field.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10403MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-comment.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10402MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-category.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10401MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-article.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10400MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/article-collaboration.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10399MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-user.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10398MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10397MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-news.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10396MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10395MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-group.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10394MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10393MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-field.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10392MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-category.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10391MedMar 12, 2020
    risk 0.31cvss 4.8epss 0.01

    The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-article.php by adding a question mark (?) followed by the payload.

  • CVE-2020-10504MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/edit-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a comment, given the id, via a crafted request.

  • CVE-2020-10503MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to disapprove any comment, given the id, via a crafted request.

  • CVE-2020-10502MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to approve any comment, given the id, via a crafted request.

  • CVE-2020-10500MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/reply-ticket.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to reply to any ticket, given the id, via a crafted request.

  • CVE-2020-10499MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to close any ticket, given the id, via a crafted request.

  • CVE-2020-10496MedMar 12, 2020
    risk 0.28cvss 4.3epss 0.00

    CSRF in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit an article, given the id, via a crafted request.

Page 5 of 6