CVE-2020-11544

EPSS 0.43% · P63 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-11544

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in Project Worlds Official Car Rental System 1. It allows the admin user to run commands on the server with their account because the upload section on the file-manager page contains an arbitrary file upload vulnerability via add_cars.php. There are no upload restrictions for executable files.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Project Worlds Official Car Rental System 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Project Worlds Official Car Rental System是一套基于PHP和MySQL的汽车租赁系统。 Project Worlds Official Car Rental System 1版本中的文件管理器页面的上传部分存在代码问题漏洞。攻击者可借助add_cars.php文件利用该漏洞在服务器上运行命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-11544

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-11544

请登录查看更多情报信息。

https://frostylabs.net/writeups/cve-2020-11544/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-11544

Same Patch Batch · n/a · 2020-04-06 · 37 CVEs total

CVE-2020-7622	6.5 MEDIUM	HTTP Response Splitting
CVE-2020-7638		confinit 输入验证错误漏洞
CVE-2020-11102		QEMU 缓冲区错误漏洞
CVE-2020-11507		Malwarebytes AdwCleaner 代码问题漏洞
CVE-2019-19699		Centreon Infrastructure Monitoring Software 安全漏洞
CVE-2020-11545		Project Worlds Official Car Rental System SQL注入漏洞
CVE-2020-9473		S.Siedle＆Soehne SG 150-0 Smart Gateway 访问控制错误漏洞
CVE-2020-7639		eivindfjeldstad-dot 输入验证错误漏洞
CVE-2020-8004		STMicroelectronics STM32F1 信息泄露漏洞
CVE-2020-5832		Broadcom Symantec Data Center Security Manager Component 安全漏洞
CVE-2020-7637		class-transformer 输入验证错误漏洞
CVE-2020-7636		adb-driver 注入漏洞
CVE-2020-7635		compass-compile 注入漏洞
CVE-2020-7634		heroku-addonpool 注入漏洞
CVE-2020-7633		apiconnect-cli-plugins 注入漏洞
CVE-2020-7632		node-mpv 注入漏洞
CVE-2020-7631		diskusage-ng 注入漏洞
CVE-2020-11565		Linux kernel 缓冲区错误漏洞
CVE-2020-11595		CIPPlanner CIPAce 信息泄露漏洞
CVE-2020-11587		CIPPlanner CIPAce 信息泄露漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-11544

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-11544

I. Basic Information for CVE-2020-11544

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-11544

III. Intelligence Information for CVE-2020-11544

Same Patch Batch · n/a · 2020-04-06 · 37 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-11544

Leave a comment