Description
Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-5850 Vulnerability (CVE-2013-5850)
WordPress Plugin kk Star Ratings 'root' Parameter Remote File Include (1.7)
WordPress Plugin Simple Sitemap-Create a Responsive HTML Sitemap Cross-Site Scripting (3.5.7)
SharePoint CVE-2022-21968 Vulnerability (CVE-2022-21968)
WordPress Improper Input Validation Vulnerability (CVE-2020-28037)