Vulnerabilities > Chadhaajay

DATE CVE VULNERABILITY TITLE RISK
2020-03-12 CVE-2020-10414 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/index-attachments.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10413 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/import-html.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10412 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/import-csv.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10411 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/email-harvester.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10410 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-user.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10409 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-template.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10408 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-subscriber.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10407 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-news.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10406 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-group.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8
2020-03-12 CVE-2020-10405 Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-glossary.php by adding a question mark (?) followed by the payload.
network
low complexity
chadhaajay CWE-79
4.8