CVE-2020-36897 | Qihang QiHang Media Web Digital Signage 3.0.9 QH.aspx remotePath/fileToUpload unrestricted upload (Exploit 48751 / EDB-48751)

A vulnerability was found in Qihang QiHang Media Web Digital Signage 3.0.9 and classified as critical. Affected by this vulnerability is an unknown functionality of the file QH.aspx. The manipulation of the argument remotePath/fileToUpload results in unrestricted upload.

This vulnerability was named CVE-2020-36897. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More