Vulnerabilities > Chadhaajay
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-03 | CVE-2020-11579 | Missing Authentication for Critical Function vulnerability in Chadhaajay PHPkb 9.0 An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. | 7.5 |
| 2020-03-12 | CVE-2020-10504 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/edit-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a comment, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10503 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to disapprove any comment, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10502 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to approve any comment, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10501 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a department, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10500 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/reply-ticket.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to reply to any ticket, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10499 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to close any ticket, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10498 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a category, given the id, via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10497 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a category via a crafted request. | 4.3 |
| 2020-03-12 | CVE-2020-10496 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit an article, given the id, via a crafted request. | 4.3 |