Lucene search
HistoryMar 09, 2014 - 1:16 p.m.
CVE-2013-1893
sql injection
owncloud server
cve-2013-1893
addressbookprovider.php
nvd
security vulnerability
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.2%
SQL injection vulnerability in addressbookprovider.php in ownCloud Server before 5.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, related to the contacts application.
Affected configurations
Node
owncloudowncloudRange≤5.0.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| owncloud:owncloud | owncloud | le | 5.0.0 |
Related
cvelist
cvelist
CVE-2013-1893
2014-03-07 20:00:00
owncloud
owncloud
Server: contacts: SQL Injection
2013-04-02 11:42:22
contacts: SQL Injection - ownCloud
2013-04-02 17:48:19
prion
prion
Sql injection
2014-03-09 13:16:00
ubuntucve
ubuntucve
CVE-2013-1893
2014-03-09 00:00:00
nvd
nvd
CVE-2013-1893
2014-03-09 13:16:56
openvas
openvas
ownCloud Multiple XSS and SQL Injection Vulnerabilities
2014-03-14 00:00:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.2%
Related for CVE-2013-1893