Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
6.1
CVSSv3
CVE-2019-7400
Published: 05/02/2019 Updated: 03/02/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Rukovoditel
Vulnerability Summary
Rukovoditel prior to 2.4.1 allows XSS.
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
rukovoditel rukovoditel
Exploits
Exploit DB: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting
# Exploit Title: Rukovoditel ERP & CRM 241 - 'path' Cross-Site Scripting # Exploit Author: Javier Olmedo # Website: hackpuntescom # Date: 2019-03-24 # Google Dork: N/A # Vendor: Rukovoditel # Software Link: sourceforgenet/projects/rukovoditel/ # Affected Version: 241 and possibly before # Patched Version: patched in extens ...
Exploit DB: Rukovoditel ERP And CRM 2.4.1 Cross Site Scripting
Rukovoditel ERP and CRM version 241 suffers from a cross site scripting vulnerability ...
References
CWE-79
https://blog.rukovoditel.net/rukovoditel-2-4-1/
https://www.exploit-db.com/exploits/46608/
http://packetstormsecurity.com/files/152248/Rukovoditel-ERP-And-CRM-2.4.1-Cross-Site-Scripting.html
https://hackpuntes.com/cve-2019-7400-rukovoditel-erp-crm-2-4-1-cross-site-scripting-reflejado/
https://nvd.nist.gov
https://www.exploit-db.com/exploits/46608
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started