Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-0320

Malware in sbrugna...

6.8CVSS6.3AI score0.0041EPSS
Exploits0References3
NVD
NVD
added 2014/03/14 5:55 p.m.24 views

CVE-2013-0300

Multiple cross-site request forgery CSRF vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to hijack the authentication of users for requests that 1 change the default view via the v parameter to apps/calendar/ajax/changeview.php, mount arbitrary 2 Google Drive or 3 Dropbox...

6.8CVSS7.3AI score0.0041EPSS
Exploits0References1
Prion
Prion
added 2014/03/14 5:55 p.m.20 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to hijack the authentication of users for requests that 1 change the default view via the v parameter to apps/calendar/ajax/changeview.php, mount arbitrary 2 Google Drive or 3 Dropbox...

6.8CVSS7.8AI score0.0041EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2014/03/14 4:55 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the 1 quota parameter to /core/settings/ajax/setquota.php, or remote authenticated users with group admin...

2.1CVSS5.7AI score0.00742EPSS
Exploits0References1Affected Software1
OwnCloud
OwnCloud
added 2013/01/22 10:42 a.m.41 views

Server: Code execution in external storage

Due to not sufficiently sanitizing the user input in "settings/personal.php" in ownCloud 4.5.x before 4.5.6 an authenticated remote attackers may be able to execute arbitrary code by entering special crafted PHP code in the mount point settings. For more information please consult the official...

4.6CVSS7.1AI score0.00897EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2012/12/18 1:55 a.m.37 views

CVE-2012-5608

Cross-site scripting XSS vulnerability in apps/userwebdavauth/settings.php in ownCloud 4.5.x before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via arbitrary POST parameters...

4.3CVSS6AI score0.01832EPSS
Exploits0References4
Cvelist
Cvelist
added 2012/12/18 1:0 a.m.31 views

CVE-2012-5608

Cross-site scripting XSS vulnerability in apps/userwebdavauth/settings.php in ownCloud 4.5.x before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via arbitrary POST parameters...

5.6AI score0.01832EPSS
Exploits0References5
OwnCloud
OwnCloud
added 2012/11/14 10:42 a.m.46 views

Server: XSS vulnerability in user_webdavauth

A cross-site scripting XSS vulnerability in ownCloud 4.5.x before 4.5.2 allow remote attackers to inject arbitrary web script or HTML via the POST data to settings.php in apps/userwebdavauth/ For more information please consult the official advisory. This advisory is licensed CC BY-SA 4.0...

4.3CVSS5.3AI score0.01832EPSS
Exploits0Affected Software1
Rows per page
Query Builder