CVE-2019-9642 Information
Feb 14, 2021
cve
Description
An issue was discovered in proxy.php in pydio-core in Pydio through 8.2.2. Through an unauthenticated request it possible to evaluate malicious PHP code by placing it on the fourth line of a .php file as demonstrated by a PoC.php created by the guest account with execution via a proxy.php?hash=../../../../../var/lib/pydio/data/personal/guest/PoC.php request. This is related to plugins/action.share/src/Store/ShareStore.php.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://github.com/pydio/pydio-core/commits/develop/core/src/proxy.php https://pydio.com/en/community/releases/pydio-core/pydio-core-pydio-enterprise-823-security-release
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8
Share on: