ARBITAR FILE UPLOAD LEADS TO "delete every file for Denial of Service (using 'rm -rf *.*' in the code), reverse connection (using '.asp' webshell), backdoor , Escalation of Privileges, etc".
CVE-2020-23591 OPTILINK E-PON "MODEL NO: OP-XT71000N" with "HARDWARE VERSION: V22"; & "FIRMWARE VERSION: OP_V331-191028" Found vulnerability in the "OPTILINK OP-XT71000N Hardware Version: V22 , Firmware Version: OP_V331-191028" which allows an attacker to upload arbitrary file through " /mgm_dev_upgradeasp " which