Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rukovoditel rukovoditel 3.2.1 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-44944
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Announcement function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted paylo...
Rukovoditel Rukovoditel 3.2.1
9.8
CVSSv3
CVE-2022-44945
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the heading_field_id parameter.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44947
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Highlight Row feature at /index.php?module=entities/listing_types&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted pay...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-43185
A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of Rukovoditel v3.2.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter.
Rukovoditel Rukovoditel 3.2.1
1 Github repository
8.8
CVSSv3
CVE-2022-45020
Rukovoditel v3.2.1 exists to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovoditel/index.php?module=users/login. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted GET request.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44946
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Page function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injec...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44948
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Entities Group feature at/index.php?module=entities/entities_groups. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected int...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44951
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add New Form tab function at /index.php?module=entities/forms&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44952
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in /index.php?module=configuration/application. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Copyright Text field a...
Rukovoditel Rukovoditel 3.2.1
8.8
CVSSv3
CVE-2022-43288
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the order_by parameter at /rukovoditel/index.php?module=logs/view&type=php.
Rukovoditel Rukovoditel 3.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »