An issue exists in URVE Build 24.03.2020. By using the _internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command and redirect its output to a file under the web root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
urve urve 24.03.2020 |