Eveo URVE Web Manager 安全漏洞

Eveo URVE Web Manager is a digital signage management platform from Eveo, Poland. A security vulnerability exists in Eveo URVE Web Manager version 27.02.2025, which originates in the endpoint /internal/pc/vpro.php allowing OS command injection...

PT-2020-17188 · Urve · Urve

Name of the Vulnerable Software and Affected Versions: URVE Build 24.03.2020 Description: An issue was discovered in URVE. By using the " internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command and redirect its output to...