CVE-2019-10264

2019-07-26T21:15:00
ID CVE-2019-10264
Type cve
Reporter cve@mitre.org
Modified 2019-07-31T13:39:00

Description

An issue was discovered in Ahsay Cloud Backup Suite before 8.1.1.50. With a valid administrator account, the "Move / Import / Export Users" screen has an Import Users option. This option accepts a ZIP archive containing a users.xml file that can trigger XXE.