CVE-2021-30224

CVE-2021-30224

EPSS 0.7%

Cross Site Request Forgery (CSRF) in Rukovoditel v2.8.3 allows attackers to create an admin user with an arbitrary credentials.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forum.rukovoditel.net/viewtopic.php?f=19&t=2760 https://gist.github.com/victomteng1997/d5f2db1d37aed5792c28685068ec41e2