CVE-2020-11820: SQL Injection
First published: Thu Apr 16 2020(Updated: )
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the entities_id parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rukovoditel Rukovoditel | =2.5.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Rukovoditel version?
The vulnerability ID for Rukovoditel version 2.5.2 is CVE-2020-11820.
What is the severity of CVE-2020-11820?
CVE-2020-11820 has a severity rating of 9.8 (Critical).
Which software version is affected by CVE-2020-11820?
The SQL injection vulnerability CVE-2020-11820 affects Rukovoditel version 2.5.2.
What is the description of CVE-2020-11820?
CVE-2020-11820 is a SQL injection vulnerability in Rukovoditel 2.5.2 due to improper handling of the entities_id parameter.
Is there a fix available for CVE-2020-11820?
It is recommended to update Rukovoditel to a patched version or apply the necessary security patches provided by the vendor to fix CVE-2020-11820.
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/rukovoditel
- canonical/rukovoditel rukovoditel
- version/rukovoditel rukovoditel/2.5.2