2 matches found
Pydio Core < 8.2.4 Multiple PHP Object Injection Vulnerabilities
Pydio Core is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pydio:pydio"; ifdescription...
CVE-2019-20452
Summary: CVE-2019-20452 affects Pydio Core (pre-8.2.4) and Pydio Enterprise (pre-8.2.4). A PHP object injection vulnerability resides in plugins/core.access/src/RecycleBinManager.php. An authenticated user with basic privileges can inject objects and achieve remote code execution. The issue is do...