CVE-2020-11816
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the reports_id (POST) parameter.
Date published : 2020-04-16
https://fatihhcelik.blogspot.com/2020/01/rukovoditel-sql-injection-reportsid-post.html