CVE-2020-36912 MEDIUM

CVE-2020-36912: Plexus anblick Digital Signage Management 3.1.13 Open Redirect via Pagina Parameter

Vendor Plexus
Product Plexus anblick Digital Signage Management
Weakness CWE-601 · Open redirect
Published January 6, 2026
Last update January 6, 2026

CVSS base score

5.1/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

What the vulnerability does

01Description

Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can craft malicious links that redirect users to arbitrary websites by exploiting improper input validation in the parameter.

Key dates

02Disclosure timeline

January 6, 2026 CVE published
January 6, 2026 Record updated