3 matches found
Pydio Cells Cross-Site Scripting (CVE-2020-12849; CVE-2020-12853)
A cross site scripting vulnerability exists in Pydio Cells. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
CVE-2020-12853
CVE-2020-12853 affects Pydio Cells 2.0.4 and is a cross-site scripting (XSS) vulnerability demonstrated through stored XSS via file uploads (e.g., HTML/JS in personal cells) and via profile pictures. Proofs of concept show an attacker exploiting uploaded SVG/HTML payloads to execute JavaScript in...
: Pydio Cells 2.04 Multiple Vulnerabilities
1. Advisory Information Title : Pydio Cells 2.04 Multiple Vulnerabilities Advisory ID : CORE-2020-0007 Advisory URL : https://www.coresecurity.com/core-labs/advisories/pydio-cells-204-multiple-vulnerabilities Date published : 2020-05-28 Date of last update : 2020-05-28 Vendors contacted : Pydio...