The administrative console in Pydio Cells allows a user with administrator role to set the path for the sendmail binary executable, when the "sendmail" option is selected in the mailer configuration.
Due to lack of sanitization in the given parameter, an administrator user can set the path to an arbitrary binary.
Due to lack of sanitization in the given parameter, an administrator user can set the path to an arbitrary binary.
CVE Link
Exploit Type
Product Name