Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23567

Malware in sbrugna...

5.4CVSS5.5AI score0.01281EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-23569

Malware in sbrugna...

5.4CVSS5.5AI score0.01287EPSS
Exploits1References2
OSV
OSV
added 2021/07/09 10:15 p.m.5 views

CVE-2020-35985

A stored cross site scripting XSS vulnerability in the 'Global Lists" feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.4CVSS5.6AI score0.01289EPSS
Exploits1References1
NVD
NVD
added 2021/07/09 10:15 p.m.12 views

CVE-2020-35987

A stored cross site scripting XSS vulnerability in the 'Entities List' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.4CVSS0.01287EPSS
Exploits1References1
NVD
NVD
added 2021/07/09 10:15 p.m.21 views

CVE-2020-35986

A stored cross site scripting XSS vulnerability in the 'Users Access Groups' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.4CVSS0.01287EPSS
Exploits1References1
Prion
Prion
added 2021/07/09 10:15 p.m.14 views

Cross site scripting

A stored cross site scripting XSS vulnerability in the 'Entities List' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

3.5CVSS5.2AI score0.01287EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/07/09 10:15 p.m.13 views

Cross site scripting

A stored cross site scripting XSS vulnerability in the 'Global Lists" feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

3.5CVSS5.2AI score0.01289EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/07/09 10:15 p.m.4 views

CVE-2020-35987

A stored cross site scripting XSS vulnerability in the 'Entities List' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.4CVSS5.3AI score0.01287EPSS
Exploits1References3
Prion
Prion
added 2021/07/09 10:15 p.m.18 views

Cross site scripting

A stored cross site scripting XSS vulnerability in the 'Users Alerts' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Title' parameter...

3.5CVSS5.2AI score0.01281EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/07/09 9:55 p.m.91 views

CVE-2020-35984

Rukovoditel

5.4CVSS5.2AI score0.01281EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/07/09 9:55 p.m.21 views

CVE-2020-35985

A stored cross site scripting XSS vulnerability in the 'Global Lists" feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.2AI score0.01289EPSS
Exploits1References1
CVE
CVE
added 2021/07/09 9:55 p.m.101 views

CVE-2020-35985

Rukovoditel

5.4CVSS5.2AI score0.01289EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/07/09 9:55 p.m.93 views

CVE-2020-35986

The connected Nuclei template and multiple references confirm CVE-2020-35986 is a stored XSS in the Rukovoditel Web App (version

5.4CVSS5.2AI score0.01287EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/07/09 9:55 p.m.17 views

CVE-2020-35986

A stored cross site scripting XSS vulnerability in the 'Users Access Groups' feature of Rukovoditel 2.7.2 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Name' parameter...

5.2AI score0.01287EPSS
Exploits1References1
CVE
CVE
added 2021/07/09 9:55 p.m.96 views

CVE-2020-35987

Rukovoditel

5.4CVSS5.2AI score0.01287EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/07/09 12:0 a.m.4 views

Rukovoditel 跨站脚本漏洞

Rukovoditel is a free web-based open source project management application. A stored cross-site scripting vulnerability exists in the "User Access Groups" feature in Rukovoditel version 2.7.2, which can be exploited to execute arbitrary web script or HTML via the 'Name' parameter...

5.4CVSS5.5AI score0.01287EPSS
Exploits1References2
OSV
OSV
added 2021/04/09 6:15 p.m.2 views

CVE-2020-13591

An exploitable SQL injection vulnerability exists in the "accessrules/rulesform" page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability, this can be done...

8.8CVSS6.3AI score0.01507EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/04/09 12:0 a.m.4 views

PT-2021-9653 · Unknown · Rukovoditel Project Management App

Name of the Vulnerable Software and Affected Versions: Rukovoditel Project Management App version 2.7.2 Description: An exploitable SQL injection issue exists in the "forms fields rules/rules" page. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated...

8.8CVSS6.2AI score0.01507EPSS
Exploits1References5
Rows per page
Query Builder