CVE

CVE-2019-12902

CVE-2019-12902

Pydio Cells before 1.5.0 does incomplete cleanup of a user’s data upon deletion. This allows a new user, holding the same User ID as a deleted user, to restore the deleted user’s data.

Source: CVE-2019-12902

Exit mobile version