Vulnerabilities > Chadhaajay > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-12 | CVE-2020-10388 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way the Referer header in article.php is handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/report-referrers.php (vulnerable file admin/include/functions-articles.php). | 3.5 |
| 2020-03-12 | CVE-2020-10391 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-article.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10392 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-category.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10393 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-field.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10394 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10395 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-group.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10396 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10397 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-news.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10398 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the payload. | 3.5 |
| 2020-03-12 | CVE-2020-10399 | Cross-site Scripting vulnerability in Chadhaajay PHPkb 9.0 The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-user.php by adding a question mark (?) followed by the payload. | 3.5 |