Rukovoditel - CVE CyberSecurity Database News

Oct 28, 2022 CSRF XSS Exploit PHP Rukovoditel

CVE-2022-43169 - Exploiting Rukovoditel v3.2.1 Users Groups Stored XSS—Step-by-Step Guide

Stored Cross-Site Scripting (XSS) vulnerabilities are among the scariest security bugs for collaborative web platforms. CVE-2022-43169 is a powerful example, discovered in Rukovoditel v3.2.

Oct 28, 2022 XSS PHP Rukovoditel

CVE-2022-43170 - Stored XSS Vulnerability in Rukovoditel v3.2.1 Dashboard Configuration Explained

When managing projects with Rukovoditel, user dashboards often display critical business data. But, as security researchers discovered, an authenticated user could exploit a flaw and

CVE-2022-43167 - Breaking Down a Stored XSS in Rukovoditel’s User Alerts (v3.2.1)

Oct 28, 2022 XSS Exploit PHP Rukovoditel

CVE-2022-43167 - Breaking Down a Stored XSS in Rukovoditel’s User Alerts (v3.2.1)

In October 2022, a critical stored cross-site scripting (XSS) vulnerability surfaced in Rukovoditel, a popular open source project management tool (official site). If you’re