CVE-2013-1850

2014-03-14T12:55:04
ID CVE-2013-1850
Type cve
Reporter NVD
Modified 2014-03-25T17:04:39

Description

Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.