Known Vulnerabilities for products from Rukovoditel
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Rukovoditel".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-31845 json | Not Provided | 2026-04-11 | 2026-04-11 | |
| CVE-2022-48175 json | Rukovoditel v3.2.1 was discovered to contain a remote code execution (RCE) vulnerability in the component /rukovoditel/index.... | 9.8 - CRITICAL | 2023-01-30 | 2023-08-08 |
| CVE-2022-45020 json | Rukovoditel v3.2.1 was discovered to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovodit... | 8.8 - HIGH | 2022-12-05 | 2022-12-06 |
| CVE-2022-44952 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in /index.php?module=configura... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-06 |
| CVE-2022-44951 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Add New Form tab functi... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-06 |
| CVE-2022-44950 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Add New Field function ... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-06 |
| CVE-2022-44949 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Add New Field function ... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-06 |
| CVE-2022-44948 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Entities Group feature ... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-06 |
| CVE-2022-44947 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Highlight Row feature a... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-05 |
| CVE-2022-44946 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Add Page function at /i... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-05 |
| CVE-2022-44945 json | Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the heading_field_id parameter. | 9.8 - CRITICAL | 2022-12-02 | 2022-12-06 |
| CVE-2022-44944 json | Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Add Announcement functi... | 5.4 - MEDIUM | 2022-12-02 | 2022-12-05 |
| CVE-2022-43288 json | Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the order_by parameter at /rukovoditel/index.p... | 8.8 - HIGH | 2022-11-14 | 2022-11-16 |
| CVE-2022-43185 json | A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of Rukovoditel v3.2.1 allows attackers... | 5.4 - MEDIUM | 2022-10-19 | 2022-10-20 |
| CVE-2022-43170 json | A stored cross-site scripting (XSS) vulnerability in the Dashboard Configuration feature (index.php?module=dashboard_configur... | 5.4 - MEDIUM | 2022-10-28 | 2022-11-01 |
| CVE-2022-43169 json | A stored cross-site scripting (XSS) vulnerability in the Users Access Groups feature (/index.php?module=users_groups/users_gr... | 5.4 - MEDIUM | 2022-10-28 | 2022-11-01 |
| CVE-2022-43168 json | Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the reports_id parameter. | 9.8 - CRITICAL | 2022-10-28 | 2022-11-01 |
| CVE-2022-43167 json | A stored cross-site scripting (XSS) vulnerability in the Users Alerts feature (/index.php?module=users_alerts/users_alerts) o... | 5.4 - MEDIUM | 2022-10-28 | 2022-11-01 |
| CVE-2022-43166 json | A stored cross-site scripting (XSS) vulnerability in the Global Entities feature (/index.php?module=entities/entities) of Ruk... | 5.4 - MEDIUM | 2022-10-28 | 2022-10-28 |
| CVE-2022-43165 json | A stored cross-site scripting (XSS) vulnerability in the Global Variables feature (/index.php?module=global_vars/vars) of Ruk... | 5.4 - MEDIUM | 2022-10-28 | 2022-10-28 |
Known software with vulnerabilities from Rukovoditel
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Rukovoditel | Rukovoditel | 1.1 |