CVE-2020-10481

Name of the Vulnerable Software and Affected Versions Chadha PHPKB Standard Multi-Language version 9

Description The issue allows attackers to add a new glossary term via a crafted request to the admin/add-glossary.php endpoint. This is made possible by a CSRF weakness.

Recommendations For Chadha PHPKB Standard Multi-Language version 9, consider implementing proper CSRF protection mechanisms, such as tokens, to prevent unauthorized requests to the admin/add-glossary.php endpoint. At the moment, there is no information about a newer version that contains a fix for this vulnerability.