Vulnerabilities

CVE-2020-10181

by Fred · 11/03/2020

goform/formEMR30 in Sumavision Enhanced Multimedia Router (EMR) 3.0.4.27 allows creation of arbitrary users with elevated privileges (administrator) on a device, as demonstrated by a setString=new_user<*1*>administrator<*1*>123456 request.

Date published : 2020-03-11

http://packetstormsecurity.com/files/156746/Enhanced-Multimedia-Router-3.0.4.27-Cross-Site-Request-Forgery.html

https://github.com/s1kr10s/Sumavision_EMR3.0

Similar

Tags: Cybersecurity Alert