Vulnerabilities > Pydio > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-05 | CVE-2020-12849 | Cross-site Scripting vulnerability in Pydio Cells 2.0.4 Pydio Cells 2.0.4 allows any user to upload a profile image to the web application, including standard and shared user roles. | 3.5 |
| 2019-05-31 | CVE-2019-10047 | Cross-site Scripting vulnerability in Pydio A stored XSS vulnerability exists in the web application of Pydio through 8.2.2 that can be exploited by levering the file upload and file preview features of the application. | 3.5 |