17 matches found
EUVD-2020-23793
Malware in sbrugna...
EUVD-2023-28803
Malicious code in bioql PyPI...
EUVD-2023-28013
Malicious code in bioql PyPI...
CVE-2023-24804
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the app’s internal...
CVE-2023-23948
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Version 2.21.1 of the ownCloud Android app is vulnerable to SQL injection in FileContentProvider.kt. This issue can lead to information disclosure. Two databases, filelist and ownclouddatabase, are...
CVE-2022-25339
ownCloud owncloud/android 2.20 has Incorrect Access Control for local attackers...
CVE-2024-50657
Owncloud Android APK 4.3.1 is affected by a privilege-escalation issue in the PassCodeViewModel.checkPassCodeIsValid method. The vulnerability is triggered by a physically proximate attacker and results in elevated privileges within the app. Public details consistently reference the affected vers...
CVE-2024-50657
An issue in Owncloud android apk v.4.3.1 allows a physically proximate attacker to escalate privileges via the PassCodeViewModel class, specifically in the checkPassCodeIsValid method...
PT-2024-34384 · Owncloud · Owncloud
Name of the Vulnerable Software and Affected Versions: Owncloud android apk version 4.3.1 Description: An issue in the Owncloud android application allows a physically proximate attacker to escalate privileges. This is specifically related to the PassCodeViewModel class, in the checkPassCodeIsVal...
Sql injection
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Version 2.21.1 of the ownCloud Android app is vulnerable to SQL injection in FileContentProvider.kt. This issue can lead to information disclosure. Two databases, filelist and ownclouddatabase, are...
CVE-2023-23948 ownCloud Android app vulnerable to SQL Injection
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Version 2.21.1 of the ownCloud Android app is vulnerable to SQL injection in FileContentProvider.kt. This issue can lead to information disclosure. Two databases, filelist and ownclouddatabase, are...
CVE-2023-24804 ownCloud Android app vulnerable to Path Traversal
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the app’s internal...
PT-2023-19315 · Owncloud · Owncloud Android App
Name of the Vulnerable Software and Affected Versions: ownCloud Android app version 2.21.1 ownCloud Android app versions 3.0 and earlier Description: The ownCloud Android app is affected by a SQL injection issue in FileContentProvider.kt, which can lead to information disclosure. Two databases,...
PT-2023-19788 · Owncloud · Owncloud Android App
Name of the Vulnerable Software and Affected Versions: ownCloud Android app versions prior to 3.0 Description: The ownCloud Android app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. These bypasses may lead to information disclosure when uploading the...
ownCloud: GitHub Security Lab (GHSL) Vulnerability Report: Insufficient path validation in ReceiveExternalFilesActivity.java (GHSL-2022-060)
The Owncloud Android app was found to have insufficient path validation in the ReceiveExternalFilesActivity activity, allowing attackers to read from and write to the application's internal storage. This could be exploited by uploading arbitrary files from the app's internal storage or by writing...
ownCloud: GitHub Security Lab (GHSL) Vulnerability Report: SQLInjection in FileContentProvider.kt (GHSL-2022-059)
Vulnerability description not provided...
ownCloud: Webview Vulnerablity [OwnCloudAndroid Application]
Hi OwnCloud Team , Vulnerability Description: What is Webview?: We can load a remote URL or display HTML pages stored in our application within an activity using WebView. Internally it uses WebKit rendering engine to display web pages. It supports methods to navigate forward and backward, text...