Description
Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server Remote Code Execution Vulnerability (CVE-2020-0618)
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.18)
WordPress Plugin Easy PayPal Buy Now Button Multiple Vulnerabilities (1.7.2)
Apache HTTP Server CVE-2004-0786 Vulnerability (CVE-2004-0786)
WordPress Plugin Calendar Multiple Cross-Site Scripting Vulnerabilities (1.2.1)