Primary

Context

QiHang Media Web Digital Signage Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in QiHang Media Web Digital Signage version 3.0.9. This vulnerability allows unauthenticated attackers to upload malicious ASPX scripts via the QH.aspx file. Exploitation involves using the 'remotePath' and 'fileToUpload' parameters to traverse directories, write files, and execute arbitrary system commands on the server.

Impact

Exploitation of this vulnerability allows for unauthenticated remote code execution on the server.

Reproduction

To reproduce this vulnerability, upload a malicious ASPX file using the 'fileToUpload' parameter through the QH.aspx file upload functionality. Include a payload that executes system commands, such as a script that runs commands via the Windows command line. The 'remotePath' parameter can be used to specify the directory where the file should be uploaded.

Added: Dec 10, 2025, 9:37 PM

Updated: Dec 10, 2025, 9:37 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

0.0

relevance

1.4

threat

6.5

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

0.0

relevance

1.4

threat

6.5

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

QiHang Media Web Digital Signage Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating