Directory Traversal Vulnerability in Pydio Cells 2.2.9 Compress Feature

Directory Traversal Vulnerability in Pydio Cells 2.2.9 Compress Feature

CVE-2021-41323 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Directory traversal in the Compress feature in Pydio Cells 2.2.9 allows remote authenticated users to overwrite personal files, or Cells files belonging to any user, via the format parameter.

Learn more about our User Device Pen Test.