4 matches found
CVE-2025-22137
Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...
CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share
Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...
CVE-2025-22137
Pingvin Share (self-hosted file sharing platform) is affected by CVE-2025-22137. The vulnerability allows an authenticated or unauthenticated user (if anonymous shares are allowed) to overwrite arbitrary files on the server via HTTP POST requests. The issue is addressed in version 1.4.0. The avai...
CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share
Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...