Rukovoditel Project Management app 2.6 is affected by: Cross Site Scripting (XSS). An attacker can add JavaScript code to the filename.Referenceshttps://www.rukovoditel.nethttps://github.com/Gr3gPr1est/BugReport/blob/master/CVE-2020-21732