Total
210374 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-10407 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-news.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10406 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-group.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10405 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-glossary.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10404 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-field.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10403 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-comment.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10402 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-category.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10400 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/article-collaboration.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10399 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-user.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10398 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-template.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10397 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-news.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10396 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-language.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10395 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-group.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10394 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-glossary.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10393 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-field.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10392 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/add-category.php by adding a question mark (?) followed by the payload. | |||||
CVE-2020-10401 | 1 Chadhaajay | 1 Phpkb | 2022-08-19 | 3.5 LOW | 4.8 MEDIUM |
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/edit-article.php by adding a question mark (?) followed by the payload. | |||||
CVE-2022-25228 | 1 Auieo | 1 Candidats | 2022-08-19 | N/A | 6.5 MEDIUM |
CandidATS Version 3.0.0 Beta allows an authenticated user to inject SQL queries in '/index.php?m=settings&a=show' via the 'userID' parameter, in '/index.php?m=candidates&a=show' via the 'candidateID', in '/index.php?m=joborders&a=show' via the 'jobOrderID' and '/index.php?m=companies&a=show' via the 'companyID' parameter | |||||
CVE-2021-23223 | 1 Intel | 10 Killer Wi-fi 6e Ax1675, Killer Wi-fi 6e Ax1675 Firmware, Killer Wi-fi 6e Ax1690 and 7 more | 2022-08-19 | N/A | 7.8 HIGH |
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. | |||||
CVE-2021-23188 | 1 Intel | 36 Dual Band Wireless-ac 3165, Dual Band Wireless-ac 3165 Firmware, Dual Band Wireless-ac 3168 and 33 more | 2022-08-19 | N/A | 3.3 LOW |
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via local access. | |||||
CVE-2022-21812 | 1 Intel | 1 Hardware Accelerated Execution Manager | 2022-08-19 | N/A | 7.8 HIGH |
Improper access control in the Intel(R) HAXM software before version 7.7.1 may allow an authenticated user to potentially enable escalation of privilege via local access. |