Rukovoditel Security Vulnerabilities and Issues — Rukovoditel CVE List

Lucene search

RukovoditelRukovoditel

2 matches found

CVE•added 2024/05/04 8:15 p.m.•42 views

CVE-2024-34469

Rukovoditel before 3.5.3 allows XSS via user_photo to index.php?module=users/registration&action=save.

7.1CVSS5.8AI score0.00863EPSS

CVE•added 2022/04/18 5:15 p.m.•38 views

CVE-2020-13590

Multiple exploitable SQL injection vulnerabilities exist in the 'entities/fields' page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities, this can be done eit...

7.2CVSS7.8AI score0.00918EPSS