5 matches found
Rukovoditel ERP & CRM 2.4.1 - path Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and...
Rukovoditel ERP And CRM 2.4.1 Cross Site Scripting
Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2019-03-24 Google Dork: N/A Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and possibly before...
Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting
Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2019-03-24 Google Dork: N/A Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and possibly before...
CVE-2019-7400
Rukovoditel before 2.4.1 allows XSS...
CVE-2019-7400
The CVE-2019-7400 entry concerns Rukovoditel ERP/CRM prior to version 2.4.1, affected by a reflected Cross‑Site Scripting (XSS) vulnerability. The issue arises from unsanitized input in the path parameter (e.g., in index.php?module=items/items&path=...), allowing injected script to be executed in...