Description
Incomplete blacklist vulnerability in lib/filesystem.php in ownCloud before 4.0.9 and 4.5.x before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a special crafted name.
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyPress Customer.io Analytics Integration Cross-Site Request Forgery (1.1.6)
WordPress Plugin Gallery PhotoBlocks Cross-Site Scripting (1.1.50)
Oracle Application Server Other Vulnerability (CVE-2007-0287)
MySQL CVE-2021-2202 Vulnerability (CVE-2021-2202)
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability (0.71 - 2.6.1)