Vulnerabilities > Chadhaajay > Phpkb > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-03-12 | CVE-2020-10494 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a news article, given the id, via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10493 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit a glossary term, given the id, via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10492 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete an article template via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10491 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a department via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10490 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a department via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10489 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a ticket via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10488 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a news article via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10487 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a glossary term via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10486 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a comment via a crafted request. | 4.3 |
2020-03-12 | CVE-2020-10485 | Cross-Site Request Forgery (CSRF) vulnerability in Chadhaajay PHPkb 9.0 CSRF in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete an article via a crafted request. | 4.3 |