6 matches found
CVE-2023-32750
creationtimestamp| type| source ---|---|--- 2023-06-09 00:26:13+00:00| seen| https://t.me/cibsecurity/65081 2023-07-05 13:11:08+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8419...
CVE-2023-32750
Pydio Cells through 4.1.2 allows SSRF. For longer running processes, Pydio Cells allows for the creation of jobs, which are run in the background. The job "remote-download" can be used to cause the backend to send a HTTP GET request to a specified URL and save the response to a new file. The...
CVE-2023-32750
Pydio Cells through 4.1.2 allows SSRF. For longer running processes, Pydio Cells allows for the creation of jobs, which are run in the background. The job "remote-download" can be used to cause the backend to send a HTTP GET request to a specified URL and save the response to a new file. The...
CVE-2023-32750
CVE-2023-32750 affects Pydio Cells up to version 4.1.2 and is a Server-Side Request Forgery (SSRF) in the background job subsystem. The vulnerability arises from the the implementation of the "remote-download" job, which can cause the backend to perform an HTTP GET to a user-specified URL and ...
Pydio Cells 4.1.2 - Server-Side Request Forgery Vulnerability
Exploit Title: Pydio Cells 4.1.2 - Server-Side Request Forgery Affected Versions: 4.1.2 and earlier versions Fixed Versions: 4.2.0, 4.1.3, 3.0.12 Vulnerability Type: Server-Side Request Forgery Security Risk: medium Vendor URL: https://pydio.com/ Vendor Status: notified Advisory URL:...
Pydio Cells 4.1.2 - Server-Side Request Forgery
Exploit Title: Pydio Cells 4.1.2 - Server-Side Request Forgery Affected Versions: 4.1.2 and earlier versions Fixed Versions: 4.2.0, 4.1.3, 3.0.12 Vulnerability Type: Server-Side Request Forgery Security Risk: medium Vendor URL: https://pydio.com/ Vendor Status: notified Advisory URL:...