CVE-2020-29552

An issue was discovered in URVE Build 24.03.2020. By using the _internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0;powershell -c ” substring, it is possible to execute a Powershell command and redirect its output to a file under the web root.

Leave a comment