Lucene search
K

7 matches found

NVD
NVD
added 2024/05/04 8:15 p.m.9 views

CVE-2024-34469

Rukovoditel before 3.5.3 allows XSS via userphoto to index.php?module=users/registration&action=save...

7.1CVSS5.7AI score0.00589EPSS
Exploits1References1
OSV
OSV
added 2024/05/04 8:15 p.m.3 views

CVE-2024-34468

Rukovoditel before 3.5.3 allows XSS via userphoto to My Page...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/05/04 8:15 p.m.9 views

CVE-2024-34468

Rukovoditel before 3.5.3 allows XSS via userphoto to My Page...

6.1CVSS5.7AI score0.00342EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/04 12:0 a.m.19 views

CVE-2024-34469

Rukovoditel before 3.5.3 allows XSS via userphoto to index.php?module=users/registration&action=save...

5.8AI score0.00589EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/05/04 12:0 a.m.13 views

CVE-2024-34468

Rukovoditel before 3.5.3 allows XSS via userphoto to My Page...

5.9AI score0.00342EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/04 12:0 a.m.15 views

CVE-2024-34468

Rukovoditel before 3.5.3 allows XSS via userphoto to My Page...

5.8AI score0.00342EPSS
Exploits1References1
CVE
CVE
added 2024/05/04 12:0 a.m.56 views

CVE-2024-34468

CVE-2024-34468 affects Rukovoditel prior to 3.5.3. The issue is an input handling failure in the user_photo parameter that enables a cross-site scripting (XSS) payload in the My Page view. Reported impact is XSS; the primary remediation is to upgrade to version 3.5.3 or later. No explicit exploit...

6.1CVSS5.8AI score0.00342EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder