CVE-2021-41323

Directory traversal in the Compress feature in Pydio Cells 2.2.9 allows remote authenticated users to overwrite personal files, or Cells files belonging to any user, via the format parameter.

Date published : 2021-09-30

https://charonv.net/Pydio-Broken-Access-Control/

https://github.com/pydio/cells/releases/tag/v2.2.12