CVE-2020-7858 – There is a directory traversing vulnerability in the download page url of AquaNPlayer 2.0. …

Vuln ID: CVE-2020-7858

Published:  2021-04-22  18:15:08Z

Description: There is a directory traversing vulnerability in the download page url of AquaNPlayer 2.0.0.92. The IP of the download page url is localhost and an attacker can traverse directories using "dot dot" sequences(../../) to view host file on the system. This vulnerability can cause information leakage.

Source: NVD.NIST.GOV

 


Date:

Categorie(s):

Tag(s):