Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OpenVAS
OpenVASadded 2021/09/21 12:0 a.m.13 views

ownCloud < 4.0.6 Multiple Vulnerabilities (oC-SA-2012-016, oC-SA-2012-017)

ownCloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; ifdescription...

6.8CVSS6.7AI score0.0063EPSS
Exploits1References3
Prion
Prionadded 2012/09/05 11:55 p.m.13 views

Code injection

appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393...

5CVSS6.4AI score0.0063EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2012/09/05 11:0 p.m.19 views

CVE-2012-4752

appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393...

6.1AI score0.0063EPSS
Exploits0References4
CVE
CVEadded 2012/09/05 11:0 p.m.70 views

CVE-2012-4752

Concrete details found: CVE-2012-4752 affects ownCloud up to version 4.0.5 with an issue in appconfig.php that allows remote (authenticated) users to edit app configurations; notes indicate CVE-2012-4393 CSRF vulnerabilities can be leveraged to enable this. Related connected sources (Red Hat, UBu...

5CVSS6.2AI score0.0063EPSS
Exploits0References4Affected Software2
OwnCloud
OwnCloudadded 2012/07/10 5:16 p.m.51 views

CSRF in appconfig.php - ownCloud

Cross-site request forgery CSRF vulnerability in core/ajax/appconfig.php in ownCloud before 4.0.7 allows remote attackers to hijack the authentication of administrators for requests that edit the app configurations. Affected Software ownCloud Server 4.0.7 CVE-2012-4391 Action Taken It is...

6.8CVSS6.5AI score0.00126EPSS
Exploits0Affected Software1
OwnCloud
OwnCloudadded 2012/07/10 11:42 a.m.34 views

Server: CSRF in appconfig.php

Cross-site request forgery CSRF vulnerability in core/ajax/appconfig.php in ownCloud before 4.0.7 allows remote attackers to hijack the authentication of administrators for requests that edit the app configurations. For more information please consult the official advisory. This advisory is...

6.8CVSS6.5AI score0.00126EPSS
Exploits0Affected Software1
OwnCloud
OwnCloudadded 2012/07/01 5:18 p.m.36 views

Auth bypass in index.php - ownCloud

ownCloud 4.0.6 and all versions previous to this doesn't sufficiently verify whether a request to appconfig.php was sent by an admin, which allows remote authenticated users to edit app configurations. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393. Affected...

6.8CVSS6.2AI score0.0063EPSS
Exploits1Affected Software1
Rows per page
Query Builder