ID | CVE-2019-13979 | ||||||
Sažetak | In Directus 7 API before 2.2.1, uploading of PHP files is not blocked, leading to uploads/_/originals remote code execution. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:P | ||||||
Zadnje važnije ažuriranje | 22-07-2019 - 14:00 | ||||||
Objavljeno | 19-07-2019 - 15:15 |