Lucene search
+L

4 matches found

nvd
nvd
added 2025/01/08 4:15 p.m.10 views

CVE-2025-22137

Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...

9.8CVSS0.00576EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/01/08 4:8 p.m.4 views

CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share

Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...

9.8CVSS7.1AI score0.00576EPSS
Exploits0References3
cve
cve
added 2025/01/08 4:8 p.m.66 views

CVE-2025-22137

Pingvin Share (self-hosted file sharing platform) is affected by CVE-2025-22137. The vulnerability allows an authenticated or unauthenticated user (if anonymous shares are allowed) to overwrite arbitrary files on the server via HTTP POST requests. The issue is addressed in version 1.4.0. The avai...

9.8CVSS9.4AI score0.00576EPSS
Exploits0References3
cvelist
cvelist
added 2025/01/08 4:8 p.m.27 views

CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share

Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...

9.8CVSS0.00576EPSS
Exploits0References3
Rows per page
Query Builder