Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2020
CVE-2020-10460
admin/include/operations.php (via admin/email-harvester.php) in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject untrusted input inside CSV files via the POST parameter data.
CVSS Score
4.9
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10461
The way comments in article.php (vulnerable function in include/functions-article.php) are handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/manage-comments.php, via the GET parameter cmt.
CVSS Score
6.1
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10462
Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10463
Reflected XSS in admin/edit-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10464
Reflected XSS in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10465
Reflected XSS in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10466
Reflected XSS in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10467
Reflected XSS in admin/edit-comment.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10468
Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12
CVE-2020-10469
Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
CVSS Score
4.8
EPSS Score
0.003
Published
2020-03-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved