Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rukovoditel rukovoditel vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-7541
Rukovoditel up to and including 2.4.1 allows XSS via a URL that lacks a module=users%2flogin substring.
Rukovoditel Rukovoditel
1 EDB exploit
6.1
CVSSv3
CVE-2019-7400
Rukovoditel prior to 2.4.1 allows XSS.
Rukovoditel Rukovoditel
1 EDB exploit
6.1
CVSSv3
CVE-2020-21732
Rukovoditel Project Management app 2.6 is affected by: Cross Site Scripting (XSS). An attacker can add JavaScript code to the filename.
Rukovoditel Rukovoditel 2.6
5.4
CVSSv3
CVE-2022-44944
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Announcement function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted paylo...
Rukovoditel Rukovoditel 3.2.1
9.8
CVSSv3
CVE-2022-44945
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the heading_field_id parameter.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44947
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Highlight Row feature at /index.php?module=entities/listing_types&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted pay...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-43185
A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of Rukovoditel v3.2.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter.
Rukovoditel Rukovoditel 3.2.1
1 Github repository
8.8
CVSSv3
CVE-2022-45020
Rukovoditel v3.2.1 exists to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovoditel/index.php?module=users/login. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted GET request.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44946
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Page function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injec...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44948
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Entities Group feature at/index.php?module=entities/entities_groups. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected int...
Rukovoditel Rukovoditel 3.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »