Lucene search
K

4 matches found

EUVD
EUVD
added 2025/12/10 9:31 p.m.7 views

EUVD-2020-30846

SpinetiX Fusion Digital Signage 3.4.8 and lower contains an authenticated path traversal vulnerability that allows attackers to manipulate file backup and deletion operations through unverified input parameters. Attackers can exploit path traversal techniques in index.php to write backup files to...

8.8CVSS6.5AI score0.00755EPSS
Exploits1References6
NVD
NVD
added 2025/12/10 9:16 p.m.6 views

CVE-2020-36887

SpinetiX Fusion Digital Signage 3.4.8 contains an unauthenticated information disclosure vulnerability in the database backup directory. Attackers can access the /content/files/backups/ endpoint to download sensitive backup files containing user credentials and system information...

8.7CVSS0.00352EPSS
Exploits1References4
NVD
NVD
added 2025/12/10 9:16 p.m.4 views

CVE-2020-36886

SpinetiX Fusion Digital Signage 3.4.8 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without proper request validation. Attackers can craft a malicious web page that automatically submits a form to create a new admin user with full...

8.8CVSS0.00225EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/10 8:49 p.m.3 views

CVE-2020-36887 SpinetiX Fusion Digital Signage 3.4.8 Unauthenticated Database Backup Disclosure

SpinetiX Fusion Digital Signage 3.4.8 contains an unauthenticated information disclosure vulnerability in the database backup directory. Attackers can access the /content/files/backups/ endpoint to download sensitive backup files containing user credentials and system information...

8.7CVSS6AI score0.00352EPSS
Exploits1References4
Rows per page
Query Builder