Security Advisory

CVE-2019-13979

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-19 14:18:16
Last updated 2024-08-05 00:05:44
Assigner mitre
State PUBLISHED

Description

In Directus 7 API before 2.2.1, uploading of PHP files is not blocked, leading to uploads/_/originals remote code execution.

← Browse all CVEs View on cve.org ↗