Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpkb vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11579
An issue exists in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated malicious user to disclose local files on hosts running PHP prior to 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFIL...
Chadhaajay Phpkb 9.0
1 Github repository
4.3
CVSSv2
CVE-2020-10495
CSRF in admin/edit-template.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to edit an article template, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10496
CSRF in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to edit an article, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10498
CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to edit a category, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10499
CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to close any ticket, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10500
CSRF in admin/reply-ticket.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to reply to any ticket, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10485
CSRF in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete an article via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10486
CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a comment via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10488
CSRF in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a news article via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv2
CVE-2020-10489
CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a ticket via a crafted request.
Chadhaajay Phpkb 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »