Lucene search

K
prionPRIOn knowledge basePRION:CVE-2013-2043
HistoryMar 14, 2014 - 4:55 p.m.

Code injection

2014-03-1416:55:00
PRIOn knowledge base
www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

36.7%

apps/calendar/ajax/events.php in ownCloud before 4.5.11 and 5.x before 5.0.6 does not properly check the ownership of a calendar, which allows remote authenticated users to download arbitrary calendars via the calendar_id parameter.

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

36.7%