CVE-2019-8389
The CVE-2019-8389 issue affects Musicloud 1.6, where the Wi‑Fi transfer feature runs a service on port 8080 accessible to any device on the same network. Affected component is the download.script endpoint, which processes POST parameters downfiles and cur-folder. A crafted ../ payload enables an ...