Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

ownCloud Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-31649)

Description

ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Transfer.

Remediation

References

Related Vulnerabilities

WordPress Plugin AddToAny Share Buttons Host Header Injection (1.7.14)

WordPress Plugin WP Gravity Forms Zendesk Cross-Site Scripting (1.0.7)

WordPress Plugin RSVPMaker SQL Injection (9.3.2)

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9421)

Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0781)

Severity

High

Classification

CVE-2022-31649 CWE-668 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities