Description

Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the file in /data.

Remediation

References

CVE-2013-2089

Related Vulnerabilities

Outdated JavaScript libraries

Oracle Database Server CVE-2008-1821 Vulnerability (CVE-2008-1821)

OpenSSL Other Vulnerability (CVE-2004-0079)

OpenSSL Other Vulnerability (CVE-2015-0207)

Python Integer Overflow or Wraparound Vulnerability (CVE-2008-2315)

Severity

Medium

Classification

CVE-2013-2089

Tags

Missing Update Known Vulnerabilities