3 matches found
ownCloud 'SabreDAV' Local File Disclosure Vulnerability (oC-SA-2013-016) - Windows
ownCloud is prone to a local file disclosure vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; i...
CVE-2013-1939
The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ backslash character...
CVE-2013-1939
The CVE-2013-1939 issue affects SabreDAV’s HTML/Browser plugin used in ownCloud on Windows, where improper checking of path separators in the base path allows remote attackers to read arbitrary files via a backslash character. Concrete details in connected documents show that SabreDAV versions 1....