EXPLOITDB-EDB-48949

EXPLOITDB text WORKING POC

Exploit for CVE-2020-36878 - ReQuest Serious Play Media Player 3.0 - Info Disclosure

AI Analysis

This exploit demonstrates a directory traversal vulnerability in ReQuest Serious Play Media Player 3.0, allowing unauthenticated file disclosure via the 'file' parameter in tail.html and file.html scripts. The PoC includes example URLs to exploit the vulnerability.

Attack Type

info_leak

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1006 - Direct Volume Access

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform hardware

Language text

Files 1

https://www.exploit-db.com/exploits/48949

Authors

LiquidWorm

Vulnerability

CVE-2020-36878

ReQuest Serious Play Media Player 3.0 - Info Disclosure