Vulnerabilities

CVE-2020-7858

by Fred · 22/04/2021

There is a directory traversing vulnerability in the download page url of AquaNPlayer 2.0.0.92. The IP of the download page url is localhost and an attacker can traverse directories using "dot dot" sequences(../../) to view host file on the system. This vulnerability can cause information leakage.

Date published : 2021-04-22

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36014

Similar

Tags: Cybersecurity Alert