| ID | CVE-2019-13980 | ||||||
| Sažetak | In Directus 7 API through 2.3.0, uploading of PHP files is blocked only when the Apache HTTP Server is used, leading to uploads/_/originals remote code execution with nginx. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:P | ||||||
| Zadnje važnije ažuriranje | 22-07-2019 - 14:02 | ||||||
| Objavljeno | 19-07-2019 - 15:15 |
