← back
CVE-2020-36912

Plexus anblick Digital Signage Management 3.1.13 Open Redirect via Pagina Parameter

CVSS 5.1 MEDIUMEPSS 0.4%CWE-601
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.1EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Jan 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can craft malicious links that redirect users to arbitrary websites by exploiting improper input validation in the parameter.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N
Affected products
Plexus · Plexus anblick Digital Signage Management

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/185521https://packetstormsecurity.com/files/158473https://www.plexus.es/https://www.vulncheck.com/advisories/plexus-anblick-digital-signage-management-open-redirect-via-pagina-parameterhttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5573.php