Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rukovoditel rukovoditel 3.2.1 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-44944
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Announcement function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted paylo...
Rukovoditel Rukovoditel 3.2.1
9.8
CVSSv3
CVE-2022-44945
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the heading_field_id parameter.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44947
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Highlight Row feature at /index.php?module=entities/listing_types&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted pay...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-43185
A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of Rukovoditel v3.2.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter.
Rukovoditel Rukovoditel 3.2.1
1 Github repository
8.8
CVSSv3
CVE-2022-45020
Rukovoditel v3.2.1 exists to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovoditel/index.php?module=users/login. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted GET request.
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44946
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add Page function at /index.php?module=help_pages/pages&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injec...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44948
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Entities Group feature at/index.php?module=entities/entities_groups. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected int...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44951
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in the Add New Form tab function at /index.php?module=entities/forms&entities_id=24. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload...
Rukovoditel Rukovoditel 3.2.1
5.4
CVSSv3
CVE-2022-44952
Rukovoditel v3.2.1 exists to contain a stored cross-site scripting (XSS) vulnerability in /index.php?module=configuration/application. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Copyright Text field a...
Rukovoditel Rukovoditel 3.2.1
8.8
CVSSv3
CVE-2022-43288
Rukovoditel v3.2.1 exists to contain a SQL injection vulnerability via the order_by parameter at /rukovoditel/index.php?module=logs/view&type=php.
Rukovoditel Rukovoditel 3.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »