Description
The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker to see the internal path and the username of a public share by including invalid characters in the URL.
Remediation
References
Related Vulnerabilities
WordPress Plugin TablePress XML External Entity Injection (1.8)
qdPM Code Execution Vulnerability (CVE-2015-3884)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10379)
WordPress 6.0.x Multiple Vulnerabilities (6.0 - 6.0.3)
WordPress Plugin Showbiz Pro Responsive Teaser Arbitrary File Upload (1.7.1)