Description
Rukovoditel v3.2.1 was discovered to contain a DOM-based cross-site scripting (XSS) vulnerability in the component /rukovoditel/index.php?module=users/login. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.
Remediation
References
Related Vulnerabilities
Oracle Database Server Incorrect Calculation of Buffer Size Vulnerability (CVE-2004-1363)
WordPress Plugin Klarna Checkout for WooCommerce Security Bypass (2.0.9)
WordPress Plugin VO Store Locator-WP Store Locator Unspecified Vulnerability (3.2.14)