Description

SQL injection vulnerability in lib/bookmarks.php in ownCloud Server 4.5.x before 4.5.11 and 5.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2013-2046

Related Vulnerabilities

MySQL CVE-2021-2196 Vulnerability (CVE-2021-2196)

MySQL CVE-2019-2502 Vulnerability (CVE-2019-2502)

Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-0449)

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5665)

PHP CVE-2009-3292 Vulnerability (CVE-2009-3292)

Severity

Medium

Classification

CVE-2013-2046 CWE-138

Tags

Missing Update Known Vulnerabilities