3 matches found
CVE-2019-10048
The CVE-2019-10048 entry concerns Pydio up to version 8.2.2 where the ImageMagick plugin does not validate/sanitize user input in its configuration options. This enables an authenticated administrator to enter arbitrary shell commands, causing command execution on the underlying OS with the web s...
Pydio 8 Command Execution / Cross Site Scripting
SecureAuth - SecureAuth Labs Advisory http://www.secureauth.com/ Pydio 8 Multiple Vulnerabilities 1. Advisory Information Title: Pydio 8 Multiple Vulnerabilities Advisory ID: SAUTH-2019-0002 Advisory URL: https://www.secureauth.com/labs/advisories/pydio-8-multiple-vulnerabilities Date published:...
Pydio 8 Command Execution / Cross Site Scripting Vulnerabilities
Pydio 8 suffers from cross site scripting, command injection, and various other vulnerabilities. Pydio 8 Multiple Vulnerabilities 1. Advisory Information Title: Pydio 8 Multiple Vulnerabilities Advisory ID: SAUTH-2019-0002 Advisory URL:...