Lucene search
PRIOn knowledge basePRION:CVE-2022-43170HistoryOct 28, 2022 - 5:15 p.m.
Cross site scripting
2022-10-2817:15:00
PRIOn knowledge base
www.prio-n.com
2
cross-site scripting
rukovoditel
dashboard configuration
arbitrary execution
0.257 Low
EPSS
Percentile
96.7%
A stored cross-site scripting (XSS) vulnerability in the Dashboard Configuration feature (index.php?module=dashboard_configure/index) of Rukovoditel v3.2.1 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter after clicking “Add info block”.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rukovoditel | eq | 3.2.1 |
References
Related
cve
cve
CVE-2022-43170
2022-10-28 17:15:27
cvelist
cvelist
CVE-2022-43170
2022-10-28 00:00:00
nuclei
nuclei
Rukovoditel <= 3.2.1 - Cross Site Scripting
2023-07-07 09:38:49
nvd
nvd
CVE-2022-43170
2022-10-28 17:15:27