WEB APPLICATION VULNERABILITIES Standard & Premium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4752)

Description

appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393.

Remediation

References

Related Vulnerabilities

WordPress Plugin WP TripAdvisor Review Slider SQL Injection (12.6)

Moodle Insufficient Verification of Data Authenticity Vulnerability (CVE-2023-5548)

Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.36)

WordPress Plugin Author Manager Multiple Vulnerabilities (1.0)

Severity

Medium

Classification

CVE-2012-4752 CWE-264

Tags

Missing Update Known Vulnerabilities