Description

ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.

Remediation

References

CVE-2021-44537

Related Vulnerabilities

WordPress Plugin MDTF-Wordpress Meta Data & Taxonomies Filter Cross-Site Request Forgery (2.2.7.2)

MySQL CVE-2024-21209 Vulnerability (CVE-2024-21209)

WordPress Plugin Appointment Scheduling for Zoom GoogleMeet and more-Wappointment Cross-Site Scripting (2.2.4)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)

WordPress 'wp-db.php' Character Set SQL Injection Vulnerability (2.0 - 2.3.1)

Severity

High

Classification

CVE-2021-44537 CWE-138 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities