CVE-2020-7808
RAONWIZ K Upload, versions 2018.0.2.51 and prior, is affected. The flaw lies in the update module (web.js) where automatic update processing occurs without an integrity check, allowing an attacker to modify arguments and cause the downloader to fetch a random DLL, followed by injection. Impact st...