PT-2026-1446 · Unknown · Plexus Anblick Digital Signage Management
Published
2026-01-06
·
Updated
2026-01-06
·
CVE-2020-36912
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Plexus anblick Digital Signage Management version 3.1.13
Description
The software contains an open redirect issue within the 'PantallaLogin' script. This allows manipulation of the
pagina GET parameter, enabling attackers to redirect users to arbitrary websites due to insufficient input validation. The affected API endpoint is likely a login screen or similar functionality.Recommendations
Ensure proper input validation is implemented for the
pagina parameter in the 'PantallaLogin' script.Exploit
Fix
Open Redirect
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Plexus Anblick Digital Signage Management