3 matches found
CVE-2013-2046
CVE-2013-2046 affects ownCloud Server: SQL injection in lib/bookmarks.php. Vulnerable in 4.5.x before 4.5.11 and 5.x before 5.0.6. Root cause: unsafely constructed SQL via bookmarks feature, allowing remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Impact per ...
Multiple SQL injection - ownCloud
ownCloud before 5.0.6 does not neutralize special elements that are passed to the SQL query in lib/db.php which therefore allows an authenticated attacker to execute arbitrary SQL commands. CVE-2013-2045 ownCloud before 5.0.6 and 4.5.11 does not neutralize special elements that are passed to the...
Server: Multiple SQL injection
ownCloud before 5.0.6 does not neutralize special elements that are passed to the SQL query in lib/db.php which therefore allows an authenticated attacker to execute arbitrary SQL commands. CVE-2013-2045 ownCloud before 5.0.6 and 4.5.11 does not neutralize special elements that are passed to the...