Lucene search
+L

6 matches found

OSV
OSV
added 2025/12/16 5:16 p.m.6 views

CVE-2023-53898

Rukovoditel 3.4.1 contains a stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can insert iframe and script payloads in application copyright text to execute arbitrary JavaScript in victim browsers...

5.4CVSS5.9AI score0.00208EPSS
Exploits1References3
NVD
NVD
added 2025/12/16 5:16 p.m.4 views

CVE-2023-53897

Rukovoditel 3.4.1 contains multiple stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can insert XSS payloads in project task comments to execute arbitrary JavaScript in victim browsers...

5.4CVSS0.00208EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/16 5:3 p.m.5 views

EUVD-2023-60193

Rukovoditel 3.4.1 contains multiple stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can insert XSS payloads in project task comments to execute arbitrary JavaScript in victim browsers...

5.1CVSS5.5AI score0.00208EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/16 5:3 p.m.28 views

CVE-2023-53898 Rukovoditel 3.4.1 Multiple Stored Cross-Site Scripting via Configuration

Rukovoditel 3.4.1 contains a stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can insert iframe and script payloads in application copyright text to execute arbitrary JavaScript in victim browsers...

5.4CVSS0.00208EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.7 views

PT-2025-51745

Name of the Vulnerable Software and Affected Versions Rukovoditel version 3.4.1 Description Rukovoditel version 3.4.1 has multiple stored cross-site scripting issues. Authenticated attackers can inject malicious scripts into project task comments. This allows them to execute arbitrary JavaScript ...

5.4CVSS5.8AI score0.00208EPSS
Exploits1References7
Exploit DB
Exploit DB
added 2023/07/03 12:0 a.m.188 views

Rukovoditel 3.4.1 - Multiple Stored XSS

Exploit Title: Rukovoditel 3.4.1 - Multiple Stored XSS Version: 3.4.1 Bugs: Multiple Stored XSS Technology: PHP Vendor URL: https://www.rukovoditel.net/ Software Link: https://www.rukovoditel.net/download.php Date of found: 24-06-2023 Author: Mirabbas Ağalarov Tested on: Linux 2. Technical Detail...

7.4AI score
Exploits0
Rows per page
Query Builder