Lucene search
K

5 matches found

0day.today
0day.today
added 2019/03/27 12:0 a.m.39 views

Rukovoditel ERP & CRM 2.4.1 - path Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and...

4.3CVSS0.05559EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/03/27 12:0 a.m.36 views

Rukovoditel ERP And CRM 2.4.1 Cross Site Scripting

Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2019-03-24 Google Dork: N/A Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and possibly before...

4.3CVSS0.1AI score0.05559EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/03/26 12:0 a.m.51 views

Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting

Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2019-03-24 Google Dork: N/A Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and possibly before...

6.1CVSS6.3AI score0.05559EPSS
Exploits5
Cvelist
Cvelist
added 2019/02/05 5:0 a.m.26 views

CVE-2019-7400

Rukovoditel before 2.4.1 allows XSS...

6.3AI score0.05559EPSS
Exploits5References4
CVE
CVE
added 2019/02/05 5:0 a.m.65 views

CVE-2019-7400

The CVE-2019-7400 entry concerns Rukovoditel ERP/CRM prior to version 2.4.1, affected by a reflected Cross‑Site Scripting (XSS) vulnerability. The issue arises from unsanitized input in the path parameter (e.g., in index.php?module=items/items&path=...), allowing injected script to be executed in...

6.1CVSS6.2AI score0.05559EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder