Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rukovoditel rukovoditel 3.2.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-44944
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Announcement function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted paylo...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44945
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the heading_field_id parameter.
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44947
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Highlight Row feature at /index.php?module=entities/listing_types&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted pay...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-43185
A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of Rukovoditel v3.2.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter.
Rukovoditel Rukovoditel 3.2.1
1 Github repository
NA
CVE-2022-45020
Rukovoditel v3.2.1 exists to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovoditel/index.php?module=users/login. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted GET request.
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44946
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Page function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injec...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44948
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Entities Group feature at/index.php?module=entities/entities_groups. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected int...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44951
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add New Form tab function at /index.php?module=entities/forms&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-44952
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in /index.php?module=configuration/application. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Copyright Text field a...
Rukovoditel Rukovoditel 3.2.1
NA
CVE-2022-43288
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the order_by parameter at /rukovoditel/index.php?module=logs/view&type=php.
Rukovoditel Rukovoditel 3.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »