Description

SQL injection vulnerability in lib/bookmarks.php in ownCloud Server 4.5.x before 4.5.11 and 5.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2013-2046

Related Vulnerabilities

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5319)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5297)

Microsoft SQL Server CVE-2023-21705 Vulnerability (CVE-2023-21705)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5953)

Django 7PK - Security Features Vulnerability (CVE-2016-7401)

Severity

Medium

Classification

CVE-2013-2046 CWE-138

Tags

Missing Update Known Vulnerabilities