Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.7 views

CVE-2019-20452

A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/core.access/src/RecycleBinManager.php. An authenticated user with basic privileges can inject objects and achieve remote code execution...

8.8CVSS7.8AI score0.02135EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/18 12:0 a.m.6 views

Pydio Core and Pydio Enterprise Injection Vulnerabilities

Pydio AjaXplorer is a web-based remote file manager. The manager supports uploading and downloading files, online file editing, image previewing and more. A security vulnerability exists in the plugins/uploader.http/HttpDownload.php file in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2....

8.8CVSS7.1AI score0.02135EPSS
Exploits0References1
OSV
OSV
added 2020/03/17 2:15 p.m.29 views

CVE-2019-20453

A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basic privileges can inject objects and achieve remote code execution...

8.8CVSS8AI score0.02135EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/03/17 1:56 p.m.25 views

CVE-2019-20453

A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basic privileges can inject objects and achieve remote code execution...

9.2AI score0.02135EPSS
Exploits0References2
CVE
CVE
added 2020/03/17 1:56 p.m.65 views

CVE-2019-20453

CVE-2019-20453 affects Pydio Core (before 8.2.4) and Pydio Enterprise (before 8.2.4). A PHP object injection flaw exists in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basic privileges can inject objects and achieve remote code execution. Public details across mult...

8.8CVSS9.1AI score0.02135EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/17 1:56 p.m.65 views

CVE-2019-20452

Summary: CVE-2019-20452 affects Pydio Core (pre-8.2.4) and Pydio Enterprise (pre-8.2.4). A PHP object injection vulnerability resides in plugins/core.access/src/RecycleBinManager.php. An authenticated user with basic privileges can inject objects and achieve remote code execution. The issue is do...

8.8CVSS9.1AI score0.02135EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder