Количество 3
Количество 3
CVE-2019-15033
Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature download. An attacker can specify an intranet address in the file parameter to index.php, when sending a file to a remote server, as demonstrated by the file=http%3A%2F%2F192.168.1.2 substring.
CVE-2019-15033
Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature dow ...
GHSA-47g3-vpfv-8v8q
Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature download. An attacker can specify an intranet address in the file parameter to index.php, when sending a file to a remote server, as demonstrated by the file=http%3A%2F%2F192.168.1.2 substring.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-15033 Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature download. An attacker can specify an intranet address in the file parameter to index.php, when sending a file to a remote server, as demonstrated by the file=http%3A%2F%2F192.168.1.2 substring. | CVSS3: 7.7 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15033 Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature dow ... | CVSS3: 7.7 | 0% Низкий | больше 6 лет назад |
| GHSA-47g3-vpfv-8v8q Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature download. An attacker can specify an intranet address in the file parameter to index.php, when sending a file to a remote server, as demonstrated by the file=http%3A%2F%2F192.168.1.2 substring. | CVSS3: 7.7 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу