CVE-2022-44947 | Rukovoditel 3.2.1 Highlight Row listing_types&entities_id=24 Note cross site scripting (Issue 13)
A vulnerability, which was classified as problematic, has been found in Rukovoditel 3.2.1. Affected by this issue is some unknown functionality of the file /index.php?module=entities/listing_types&entities_id=24 of the component Highlight Row Handler. The manipulation of the argument Note leads to cross site scripting.
This vulnerability is handled as CVE-2022-44947. The attack may be launched remotely. There is no exploit available.