Approved changes feed: RSS · Atom

cpe:2.3:a:all-dynamics:digital_signage_system:2.0.2:*:*:*:*:*:*:*

part: a version: 2.0.2 update: *

VendorAll Dynamics (6964b67e-aa40-5b52-84c9-23990c0f4949)
ProductDigital Signage System (d2e67d79-5e86-5a65-8b3b-e308e4a72be1)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-36900 vulnerable 2026-06-08 05:25:49.797310 All-Dynamics Digital Signage System 2.0.2 Cross-Site Request Forgery via User Management
All-Dynamics Digital Signage System 2.0.2 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft a malicious web page that automatically submits forms to create a new user with global administrative privileges when a logged-in user visits the page.
Published: 2025-12-10T21:04:43.623Z
Updated: 2025-12-11T18:52:41.778Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.