CVE-2020-10387

MEDIUM

Chadha PHPKB Standard Multi-Language 9 - Authenticated Path Traversal via Download Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-10387. PoCs published by Antonio Cannito.

AI-analyzed exploit summary This exploit leverages an authenticated directory traversal vulnerability in PHPKB Multi-Language 9 to download arbitrary files from the server. It requires valid superuser credentials to authenticate and then crafts a malicious request to download files outside the intended directory.

Description

Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to download files from the server using a dot-dot-slash sequence (../) via the GET parameter file.

Exploits (1)

exploitdb WORKING POC
by Antonio Cannito · pythonwebappsphp
https://www.exploit-db.com/exploits/48220

This exploit leverages an authenticated directory traversal vulnerability in PHPKB Multi-Language 9 to download arbitrary files from the server. It requires valid superuser credentials to authenticate and then crafts a malicious request to download files outside the intended directory.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Chadha PHPKB Standard Multi-Language 9
Auth required
Prerequisites: Valid superuser credentials · Access to the admin login page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
http://antoniocannito.it/?p=137#afd
Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/48220

Scores

CVSS v3 4.9
EPSS 0.0784
EPSS Percentile 93.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (1)
chadhaajay/phpkb 9.0
Published Mar 12, 2020
Tracked Since Feb 18, 2026