Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpkb vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1909
SQL injection vulnerability in comment.php in PHP Knowledge Base (PHPKB) 1.5 and 2.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Chadha Software Technologies Phpkb Knowledge Base 2.0
Chadha Software Technologies Phpkb Knowledge Base 1.5
2 EDB exploits
4.3
CVSSv3
CVE-2020-10485
CSRF in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete an article via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv3
CVE-2020-10487
CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a glossary term via a crafted request.
Chadhaajay Phpkb 9.0
1 EDB exploit
4.3
CVSSv3
CVE-2020-10488
CSRF in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a news article via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv3
CVE-2020-10489
CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a ticket via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv3
CVE-2020-10490
CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete a department via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv3
CVE-2020-10492
CSRF in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to delete an article template via a crafted request.
Chadhaajay Phpkb 9.0
4.3
CVSSv3
CVE-2020-10493
CSRF in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to edit a glossary term, given the id, via a crafted request.
Chadhaajay Phpkb 9.0
7.5
CVSSv3
CVE-2020-11579
An issue exists in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated malicious user to disclose local files on hosts running PHP prior to 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFIL...
Chadhaajay Phpkb 9.0
1 Github repository
7.2
CVSSv3
CVE-2020-10386
admin/imagepaster/image-upload.php in Chadha PHPKB Standard Multi-Language 9 allows remote malicious users to achieve Code Execution by uploading a .php file in the admin/js/ directory.
Chadhaajay Phpkb 9.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »