CVE-2020-10492

Name of the Vulnerable Software and Affected Versions Chadha PHPKB Standard Multi-Language version 9

Description The issue allows attackers to delete an article template via a crafted request to the admin/manage-templates.php endpoint. This is made possible by a CSRF weakness.

Recommendations For Chadha PHPKB Standard Multi-Language version 9, consider implementing proper CSRF protection mechanisms to prevent unauthorized requests to the admin/manage-templates.php endpoint. As a temporary workaround, restrict access to this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.