Description

An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (aka Blind SSRF) or conduct a Denial Of Service attack.

Remediation

References

CVE-2020-10252

Related Vulnerabilities

TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2022-31047)

MySQL CVE-2012-0113 Vulnerability (CVE-2012-0113)

WordPress Plugin Edwiser Bridge-WordPress Moodle LMS Integration Unspecified Vulnerability (2.0.7)

PHP Integer Overflow or Wraparound Vulnerability (CVE-2024-11236)

WordPress Plugin Booking Calendar SQL Injection (8.4.4)

Severity

High

Classification

CVE-2020-10252 CWE-918 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

Tags

Missing Update Known Vulnerabilities