Description

Unspecified vulnerability in core/ajax/translations.php in ownCloud before 4.0.12 and 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via unknown vectors. NOTE: this entry has been SPLIT due to different affected versions. The core/settings.php issue is covered by CVE-2013-7344.

Remediation

References

CVE-2013-0303

Related Vulnerabilities

WordPress Plugin Conditional Payments for WooCommerce Cross-Site Request Forgery (2.3.1)

WordPress Plugin Import all XML, CSV & TXT into WordPress Arbitrary File Upload (6.4)

WordPress Plugin MStore API Security Bypass (2.1.5)

WordPress Plugin Simple Photo Gallery Cross-Site Scripting (1.8.0)

WordPress Plugin Google +1 by BestWebSoft Cross-Site Scripting (1.1.6)

Severity

Medium

Classification

CVE-2013-0303

Tags

Missing Update Known Vulnerabilities