Vulners
Lucene search
QiHang Media Web (QH.aspx) Digital Signage 3.0.9 Cookie User Password Disclosure
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | CVE-2020-36914 | 6 Jan 202616:10 | – | circl |
 | QiHang Media Web Digital Signage 安全漏洞 | 6 Jan 202600:00 | – | cnnvd |
 | CVE-2020-36914 | 6 Jan 202615:53 | – | cve |
 | CVE-2020-36914 QiHang Media Web Digital Signage 3.0.9 Cookie Authentication Credentials Disclosure | 6 Jan 202615:53 | – | cvelist |
 | EUVD-2026-1023 | 6 Jan 202615:53 | – | euvd |
 | CVE-2020-36914 | 6 Jan 202616:15 | – | nvd |
 | PT-2026-1448 | 6 Jan 202600:00 | – | ptsecurity |
 | CVE-2020-36914 QiHang Media Web Digital Signage 3.0.9 Cookie Authentication Credentials Disclosure | 6 Jan 202615:53 | – | vulnrichment |
<html><body><p>QiHang Media Web (QH.aspx) Digital Signage 3.0.9 Cookie User Password Disclosure
Vendor: Shenzhen Xingmeng Qihang Media Co., Ltd.
Guangzhou Hefeng Automation Technology Co., Ltd.
Product web page: http://www.howfor.com
Affected version: 3.0.9.0
Summary: Digital Signage Software.
Desc: The application suffers from a cleartext transmission/storage of
sensitive information in a cookie. This allows a remote attacker to
intercept the HTTP Cookie authentication credentials via a man-in-the-middle
attack.
Tested on: Microsoft Windows Server 2012 R2 Datacenter
Microsoft Windows Server 2003 Enterprise Edition
ASP.NET 4.0.30319
HowFor Web Server/5.6.0.0
Microsoft ASP.NET Web QiHang IIS Server
Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
@zeroscience
Advisory ID: ZSL-2020-5578
Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5578.php
27.07.2020
--
Intercepted request:
--------------------
POST /QH.aspx HTTP/1.1
Host: 192.168.1.74:8090
Content-Length: 127
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.89 Safari/537.36
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Origin: http://192.168.1.74:8090
Referer: http://192.168.1.74:8090/index.htm
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: ASP.NET_SessionId=3c15wuu2incsghmfmzr0ziff; qihang_cookie_key_account=admin; qihang_cookie_key_password=admin; qihang_cookie_key_language=en; qihang_cookie_key_auto_login=
Connection: close
</p></body></html>Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
13 Aug 2020 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.17.5
CVSS 48.6
EPSS0.00051
SSVC