Description
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the reports_id (POST) parameter.
Remediation
References
Related Vulnerabilities
Drupal CVE-2022-25278 Vulnerability (CVE-2022-25278)
Python Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
WordPress Plugin Contact Form 7 Database Addon-CFDB7 Unspecified Vulnerability (1.2.5.3)
WordPress Plugin User Activity Log Multiple Cross-Site Scripting Vulnerabilities (1.4.6)
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6146)