Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chadhaajay vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2020-10469
Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to inject arbitrary web script or HTML via the GET parameter sort.
Chadhaajay Phpkb 9.0
3.5
CVSSv2
CVE-2020-10473
Reflected XSS in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to inject arbitrary web script or HTML via the GET parameter sort.
Chadhaajay Phpkb 9.0
3.5
CVSSv2
CVE-2020-10475
Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to inject arbitrary web script or HTML via the GET parameter sort.
Chadhaajay Phpkb 9.0
6.8
CVSSv2
CVE-2020-10478
CSRF in admin/manage-settings.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to change the global settings, potentially gaining code execution or causing a denial of service, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10482
CSRF in admin/add-template.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to add a new article template via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10487
CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a glossary term via a crafted request.
Chadhaajay Phpkb 9.0
1 EDB exploit
4.3
CVSSv2
CVE-2020-10496
CSRF in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to edit an article, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10499
CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to close any ticket, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10503
CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to disapprove any comment, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4
CVSSv2
CVE-2020-10457
Path Traversal in admin/imagepaster/image-renaming.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to rename any file on the webserver using a dot-dot-slash sequence (../) via the POST parameter imgName (for the new name) and imgUrl (for the current file to b...
Chadhaajay Phpkb 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »