Vulnerability Details CVE-2020-27993
Hrsale 2.0.0 allows download?type=files&filename=../ directory traversal to read arbitrary files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 82.5%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
Products affected by CVE-2020-27993
-
cpe:2.3:a:hrsale:hrsale:2.0.0