CVE-2023-53897 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Rukovoditel 3.4.1 contains multiple stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can in…
Medium CVSS: 5.1

CVE-2023-53897

Rukovoditel 3.4.1 contains multiple stored cross-site scripting vulnerabilities that allow authenticated attackers to inject malicious scripts. Attackers can insert XSS payloads in project task comments to execute arbitrary JavaScript in victim browsers.
Vendor
Rukovoditel
Product
Rukovoditel
CWE
CWE-79
Yayın Tarihi
2025-12-16 17:16:01
Güncelleme
2025-12-27 17:15:42
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-79 Rukovoditel MEDIUM Rukovoditel 2025

Referanslar

https://www.exploit-db.com/exploits/51548 https://www.rukovoditel.net/ https://www.vulncheck.com/advisories/rukovoditel-multiple-stored-cross-site-scripting-via-comments