7 matches found
EUVD-2022-47878
Malicious code in bioql PyPI...
CVE-2022-48175
Rukovoditel v3.2.1 was discovered to contain a remote code execution RCE vulnerability in the component /rukovoditel/index.php?module=dashboard/ajaxrequest...
PT-2022-27375 · Unknown · Rukovoditel
Name of the Vulnerable Software and Affected Versions: Rukovoditel version 3.2.1 Description: A DOM-based cross-site scripting XSS issue was found in the /rukovoditel/index.php?module=users/login component. This allows attackers to cause a Denial of Service DoS by sending a crafted GET request...
PT-2022-27346 · Unknown · Rukovoditel
Name of the Vulnerable Software and Affected Versions: Rukovoditel version 3.2.1 Description: A stored cross-site scripting XSS issue was found in the Highlight Row feature at "/index.php?module=entities/listing types&entities id=24". This allows attackers to execute arbitrary web scripts or HTML...
PT-2022-27343 · Unknown · Rukovoditel
Name of the Vulnerable Software and Affected Versions: Rukovoditel version 3.2.1 Description: The issue is related to a stored cross-site scripting XSS vulnerability in the Add Announcement function at "/index.php?module=help pages/pages&entities id=24". This allows attackers to execute arbitrary...
PT-2022-27351 · Unknown · Rukovoditel
Name of the Vulnerable Software and Affected Versions: Rukovoditel version 3.2.1 Description: The issue is related to a stored cross-site scripting XSS vulnerability in the Add New Form tab function at "/index.php?module=entities/forms&entities id=24". This allows attackers to execute arbitrary w...
CVE-2022-43168
Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the reportsid parameter...