Vulnerability Details CVE-2020-11819
In Rukovoditel 2.5.2, an attacker may inject an arbitrary .php file location instead of a language file and thus achieve command execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.294
EPSS Ranking 96.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-11819
-
cpe:2.3:a:rukovoditel:rukovoditel:2.5.2