Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QiHang Media Web Digital Signage 3.0.9 Unauthenticated Remote Code Execution
Vulnerability Description
QiHang Media Web Digital Signage 3.0.9 contains an unauthenticated remote code execution vulnerability in the QH.aspx file that allows attackers to upload malicious ASPX scripts. Attackers can exploit the file upload functionality by using the 'remotePath' and 'fileToUpload' parameters to write and execute arbitrary system commands on the server.
CVSS Information
N/A
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
QiHang Media Web Digital Signage 代码问题漏洞
Vulnerability Description
QiHang Media Web Digital Signage是中国QiHang公司的一个数字标牌管理软件。 QiHang Media Web Digital Signage 3.0.9版本存在代码问题漏洞,该漏洞源于QH.aspx文件存在远程代码执行,可能导致任意命令执行。
CVSS Information
N/A
Vulnerability Type
N/A