Rukovoditel Project Management app 2.6 is affected by: Cross Site Scripting (XSS). An attacker can add JavaScript code to the filename.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21732
Reference (s):
- http://rukovoditel.com
- https://github.com/Gr3gPr1est/BugReport/blob/master/CVE-2020-21732
- https://www.rukovoditel.net