Lucene search
MitreCVELIST:CVE-2022-43170HistoryOct 28, 2022 - 12:00 a.m.
CVE-2022-43170
2022-10-2800:00:00
mitre
www.cve.org
cross-site scripting
rukovoditel v3.2.1
dashboard configuration
0.257 Low
EPSS
Percentile
96.7%
A stored cross-site scripting (XSS) vulnerability in the Dashboard Configuration feature (index.php?module=dashboard_configure/index) of Rukovoditel v3.2.1 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter after clicking “Add info block”.
References
Related
cve
cve
CVE-2022-43170
2022-10-28 17:15:27
nvd
nvd
CVE-2022-43170
2022-10-28 17:15:27
nuclei
nuclei
Rukovoditel <= 3.2.1 - Cross Site Scripting
2023-07-07 09:38:49
prion
prion
Cross site scripting
2022-10-28 17:15:00