File Upload Vulnerability in pgAdmin by Red Hat
CVE-2022-0959
6.5MEDIUM
What is CVE-2022-0959?
An authenticated user can exploit a vulnerability in pgAdmin, allowing them to upload files to any writable location on the operating system. This risk arises when a user leverages their existing CSRF token and session cookie, potentially leading to unauthorized access or malicious file uploads, compromising system integrity.
Affected Version(s)
pgadmin pgadmin 6.7