Lucene search
OwnCloudOC-SA-2013-006HistoryFeb 20, 2013 - 10:42 a.m.
Server: Multiple code executions
2013-02-2010:42:22
owncloud.org
35
0.002 Low
EPSS
Percentile
64.5%
A code executions vulnerability in ownCloud 4.5.6 and 4.0.11 and all prior versions allow authenticated remote attackers to execute arbitrary PHP code via
- unspecified POST parameters to translations.php in /core/ajax/
- Commits: 74e73bc (stable4), ece08cd (stable45)
- Risk: Critical
A code executions vulnerability in ownCloud 4.5.6 and all prior versions (except ownCloud 4.0.x) allow authenticated remote attackers to execute arbitrary PHP code via
- unspecified POST parameters to settings.php in /core/
- Commits: 746aa0 (stable45)
- Risk: Critical
For more information please consult the official advisory.
This advisory is licensed CC BY-SA 4.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| owncloud server | lt | 4.5.7 | |
| owncloud server | lt | 4.0.12 |
Related
owncloud
owncloud
Multiple code executions - ownCloud
2013-02-20 17:31:51
openvas
openvas
ownCloud PHP Remote Code Execution Vulnerabilities (Apr 2014)
2014-04-07 00:00:00
prion
prion
Design/Logic Flaw
2014-03-24 16:31:00
Design/Logic Flaw
2014-03-24 16:31:00
cvelist
cvelist
CVE-2013-7344
2014-03-23 15:00:00
CVE-2013-0303
2014-03-23 15:00:00
nvd
nvd
CVE-2013-7344
2014-03-24 16:31:06
CVE-2013-0303
2014-03-24 16:31:06
cve
cve
CVE-2013-7344
2014-03-24 16:31:06
CVE-2013-0303
2014-03-24 16:31:06
ubuntucve
ubuntucve
CVE-2013-7344
2014-03-24 00:00:00
CVE-2013-0303
2014-03-24 00:00:00