Description
appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP TripAdvisor Review Slider SQL Injection (12.6)
Moodle Insufficient Verification of Data Authenticity Vulnerability (CVE-2023-5548)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707)
WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.36)
WordPress Plugin Author Manager Multiple Vulnerabilities (1.0)