MidnightBSD

Advisories for owncloud

CVE-2012-2269 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary field to apps/contacts/ajax/addcard.php, (2) the parameter parameter to apps/contacts/ajax/addproperty.php, (3) the name parameter to apps/contacts/ajax/createaddressbook, (4) the file parameter to files/download.php, or the (5) name, (6) user, or (7) redirect_url parameter to files/index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_server 3.0.0
owncloud owncloud_server 3.0.1
CVE-2012-2270 MEDIUM

Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_server 3.0.0
owncloud owncloud_server 3.0.1
CVE-2012-2397 MEDIUM

Cross-site request forgery (CSRF) vulnerability in ownCloud before 3.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site scripting (XSS) sequences via vectors involving contacts.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_server 3.0.0
owncloud owncloud_server 3.0.1
CVE-2012-2398 MEDIUM

Cross-site scripting (XSS) vulnerability in files/ajax/download.php in ownCloud before 3.0.3 allows remote attackers to inject arbitrary web script or HTML via the files parameter, a different vulnerability than CVE-2012-2269.4.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_server 3.0.0
owncloud owncloud_server 3.0.1
CVE-2012-5665 MEDIUM

ownCloud 4.0.x before 4.0.10 and 4.5.x before 4.5.5 does not properly restrict access to settings.php, which allows remote attackers to edit app configurations of user_webdavauth and user_ldap by editing this file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.2
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
CVE-2012-5666 MEDIUM

Cross-site scripting (XSS) vulnerability in bookmarks/js/bookmarks.js in ownCloud 4.0.x before 4.0.10 and 4.5.x before 4.5.5 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to apps/bookmark/index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.2
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
CVE-2013-0201 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.5, 4.0.10, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) QUERY_STRING to core/lostpassword/templates/resetpassword.php, (2) mime parameter to apps/files/ajax/mimeicon.php, or (3) token parameter to apps/gallery/sharing.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.2
owncloud owncloud 4.0.4
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.0.9
CVE-2013-0202 MEDIUM

Cross-site scripting (XSS) vulnerability in ownCloud 4.5.5, 4.0.10, and earlier allows remote attackers to inject arbitrary web script or HTML via the action parameter to core/ajax/sharing.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-0203 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.5, 4.0.10, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) unspecified parameters to apps/calendar/ajax/event/new.php or (2) url parameter to apps/bookmarks/ajax/addBookmark.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-0204 MEDIUM

settings/personal.php in ownCloud 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via crafted mount point settings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.5.3
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
CVE-2013-0297 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) site_name or (2) site_url parameter to apps/external/ajax/setsites.php.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 3.0.2
owncloud owncloud 4.0.5
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-0298 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted iCalendar file to the calendar application, the (2) dir or (3) file parameter to apps/files_pdfviewer/viewer.php, or the (4) mountpoint parameter to /apps/files_external/addMountPoint.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.5.3
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
CVE-2013-0299 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allow remote attackers to hijack the authentication of users for requests that (1) change the timezone for the user via the lat and lng parameters to apps/calendar/ajax/settings/guesstimezone.php, (2) disable or enable the automatic timezone detection via the timezonedetection parameter to apps/calendar/ajax/settings/timezonedetection.php, (3) import user accounts via the admin_export parameter to apps/admin_migrate/settings.php, (4) overwrite user files via the operation parameter to apps/user_migrate/ajax/export.php, or (5) change the authentication server URL via unspecified vectors to apps/user_ldap/settings.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 3.0.2
owncloud owncloud 4.0.5
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-0300 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to hijack the authentication of users for requests that (1) change the default view via the v parameter to apps/calendar/ajax/changeview.php, mount arbitrary (2) Google Drive or (3) Dropbox folders via vectors related to addRootCertificate.php, dropbox.php and google.php in apps/files_external/ajax/, or (4) change the authentication server URL via unspecified vectors to apps/user_webdavauth/settings.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.5.3
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
CVE-2013-0301 MEDIUM

Cross-site request forgery (CSRF) vulnerability in apps/calendar/ajax/settings/settimezone in ownCloud before 4.0.12 allows remote attackers to hijack the authentication of users for requests that change the timezone via the timezone parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 3.0.2
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 3.0.3
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-0302 MEDIUM

Unspecified vulnerability in ownCloud Server before 4.0.12 allows remote attackers to obtain sensitive information via unspecified vectors related to "inclusion of the Amazon SDK testing suite." NOTE: due to lack of details, it is not clear whether the issue exists in ownCloud itself, or in Amazon SDK.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 4.0.4
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.0.9
CVE-2013-0303 MEDIUM

Unspecified vulnerability in core/ajax/translations.php in ownCloud before 4.0.12 and 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via unknown vectors. NOTE: this entry has been SPLIT due to different affected versions. The core/settings.php issue is covered by CVE-2013-7344.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
CVE-2013-0304 MEDIUM

ownCloud Server before 4.5.7 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to /apps/calendar/export.php. NOTE: this issue has been reported as a cross-site request forgery (CSRF) vulnerability, but due to lack of details, it is uncertain what the root cause is.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.5.3
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
CVE-2013-0307 LOW

Cross-site scripting (XSS) vulnerability in settings.php in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allows remote administrators to inject arbitrary web script or HTML via the group input field parameter.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 3.0.2
owncloud owncloud 4.0.5
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-1822 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the (1) quota parameter to /core/settings/ajax/setquota.php, or remote authenticated users with group admin privileges to inject arbitrary web script or HTML via the (2) group field to settings.php or (3) "share with" field.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.5.3
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 4.5.7
CVE-2013-1850 MEDIUM

Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 3.0.2
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 4.5.7
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-1851 LOW

Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before 4.5.8, when the user_migrate application is enabled, allows remote authenticated users to import arbitrary files to the user's account via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 3.0.2
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 4.5.7
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2013-1890 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) new_name parameter to apps/bookmarks/ajax/renameTag.php or (2) multiple unspecified parameters to unknown files in apps/contacts/ajax/.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-1893 MEDIUM

SQL injection vulnerability in addressbookprovider.php in ownCloud Server before 5.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, related to the contacts application.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-1939 MEDIUM

The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud *
fruux sabredav *
CVE-2013-1941 MEDIUM

The installation routine in ownCloud Server before 4.0.14, 4.5.x before 4.5.9, and 5.0.x before 5.0.4 uses the time function to seed the generation of the PostgreSQL database user password, which makes it easier for remote attackers to guess the password via a brute force attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
CVE-2013-1942 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.2.20, as used in ownCloud Server before 5.0.4 and other products, allow remote attackers to inject arbitrary web script or HTML via the (1) jQuery or (2) id parameters, as demonstrated using document.write in the jQuery parameter, a different vulnerability than CVE-2013-2022 and CVE-2013-2023.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
happyworm jplayer 2.0.36
happyworm jplayer 2.0.8
owncloud owncloud 4.5.4
happyworm jplayer 2.2.4
happyworm jplayer 2.0.16
happyworm jplayer 2.1.0
happyworm jplayer 2.1.1
happyworm jplayer 2.2.0
happyworm jplayer 2.0.23
happyworm jplayer 2.0.5
happyworm jplayer 2.2.15
happyworm jplayer 2.0.26
happyworm jplayer 0.2.1
happyworm jplayer 2.2.16
happyworm jplayer 2.0.18
owncloud owncloud 3.0.1
happyworm jplayer 2.2.11
owncloud owncloud *
happyworm jplayer 2.2.10
happyworm jplayer 1.1.0
happyworm jplayer 2.0.31
happyworm jplayer 2.2.1
owncloud owncloud 4.0.5
happyworm jplayer 2.0.7
happyworm jplayer 2.0.27
owncloud owncloud 4.5.8
happyworm jplayer 1.2.0
happyworm jplayer 2.0.3
happyworm jplayer 2.0.13
happyworm jplayer 2.0.22
happyworm jplayer 2.2.8
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
happyworm jplayer 2.1.6
happyworm jplayer 2.0.14
happyworm jplayer 2.0.25
happyworm jplayer 0.2.5
owncloud owncloud 4.5.6
happyworm jplayer 2.2.12
owncloud owncloud 4.5.7
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 4.5.0
happyworm jplayer 2.2.14
happyworm jplayer 2.0.30
happyworm jplayer *
owncloud owncloud 4.0.12
happyworm jplayer 2.0.28
happyworm jplayer 2.1.2
happyworm jplayer 2.1.3
happyworm jplayer 2.2.17
happyworm jplayer 2.1.5
happyworm jplayer 2.0.29
happyworm jplayer 2.2.3
owncloud owncloud 4.0.7
happyworm jplayer 2.0.10
happyworm jplayer 0.2.3
happyworm jplayer 2.0.20
happyworm jplayer 2.0.21
happyworm jplayer 2.0.17
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.0.9
owncloud owncloud 4.0.16
happyworm jplayer 2.0.9
happyworm jplayer 2.2.2
happyworm jplayer 2.0.33
owncloud owncloud 4.0.3
happyworm jplayer 2.2.9
happyworm jplayer 2.0.12
happyworm jplayer 2.0.4
happyworm jplayer 0.2.4
happyworm jplayer 2.0.32
owncloud owncloud 4.0.6
happyworm jplayer 2.2.6
owncloud owncloud 4.0.10
happyworm jplayer 2.2.7
owncloud owncloud 4.0.2
happyworm jplayer 2.0.15
happyworm jplayer 2.0.0
owncloud owncloud 4.5.12
owncloud owncloud 4.0.15
happyworm jplayer 2.0.24
owncloud owncloud 3.0.2
owncloud owncloud 4.5.11
owncloud owncloud 4.0.14
happyworm jplayer 2.2.18
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
happyworm jplayer 2.0.11
owncloud owncloud 4.0.4
owncloud owncloud 5.0.2
owncloud owncloud 3.0.3
owncloud owncloud 4.5.13
happyworm jplayer 2.1.4
owncloud owncloud 4.0.8
happyworm jplayer 1.0.0
happyworm jplayer 2.0.35
happyworm jplayer 2.0.6
happyworm jplayer 2.0.2
owncloud owncloud 4.0.0
happyworm jplayer 2.2.13
happyworm jplayer 0.2.2
happyworm jplayer 2.0.34
happyworm jplayer 2.0.1
happyworm jplayer 1.1.1
owncloud owncloud 4.5.9
happyworm jplayer 2.2.5
happyworm jplayer 2.0.19
owncloud owncloud 4.0.13
CVE-2013-1963 MEDIUM

The contacts application in ownCloud before 4.5.10 and 5.x before 5.0.5 does not properly check the ownership of contacts, which allows remote authenticated users to download arbitrary contacts via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.8
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.5.3
CVE-2013-1967 MEDIUM

Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2, as used in ownCloud Server 5.0.x before 5.0.5 and 4.5.x before 4.5.10, allows remote attackers to inject arbitrary web script or HTML via the file parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediaelementjs mediaelement.js 2.2.4
mediaelementjs mediaelement.js 2.7.0
owncloud owncloud 4.5.4
mediaelementjs mediaelement.js 2.6.3
mediaelementjs mediaelement.js 2.11.0
mediaelementjs mediaelement.js 1.0.2
mediaelementjs mediaelement.js 1.1.2
mediaelementjs mediaelement.js 2.0.5
mediaelementjs mediaelement.js 2.3.1
mediaelementjs mediaelement.js 1.0.3
owncloud owncloud 5.0.4
mediaelementjs mediaelement.js 2.0.2
mediaelementjs mediaelement.js 2.9.2
mediaelementjs mediaelement.js 2.1.8
mediaelementjs mediaelement.js 2.1.9
mediaelementjs mediaelement.js 2.5.0
mediaelementjs mediaelement.js 2.1.4
mediaelementjs mediaelement.js 2.1.2
mediaelementjs mediaelement.js 2.9.1
mediaelementjs mediaelement.js 2.0.1
mediaelementjs mediaelement.js *
mediaelementjs mediaelement.js 2.1.0
mediaelementjs mediaelement.js 1.1.6
mediaelementjs mediaelement.js 2.1.6
mediaelementjs mediaelement.js 2.10.1
mediaelementjs mediaelement.js 2.6.5
mediaelementjs mediaelement.js 2.4.1
mediaelementjs mediaelement.js 2.1.3
owncloud owncloud 4.5.8
mediaelementjs mediaelement.js 1.1.0
mediaelementjs mediaelement.js 2.4.2
mediaelementjs mediaelement.js 2.1.1
owncloud owncloud 5.0.3
mediaelementjs mediaelement.js 1.1.3
mediaelementjs mediaelement.js 2.0.6
mediaelementjs mediaelement.js 2.0.7
mediaelementjs mediaelement.js 1.0.6
owncloud owncloud 4.5.3
mediaelementjs mediaelement.js 2.4.0
mediaelementjs mediaelement.js 2.3.0
mediaelementjs mediaelement.js 2.0.3
mediaelementjs mediaelement.js 2.10.2
mediaelementjs mediaelement.js 1.0.4
mediaelementjs mediaelement.js 2.9.3
mediaelementjs mediaelement.js 2.8.2
mediaelementjs mediaelement.js 2.2.1
mediaelementjs mediaelement.js 1.0.7
owncloud owncloud 4.5.6
mediaelementjs mediaelement.js 2.2.0
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
mediaelementjs mediaelement.js 2.8.0
mediaelementjs mediaelement.js 2.9.4
owncloud owncloud 5.0.0
mediaelementjs mediaelement.js 1.0.5
owncloud owncloud 4.5.7
mediaelementjs mediaelement.js 2.6.2
mediaelementjs mediaelement.js 2.4.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
mediaelementjs mediaelement.js 1.0.0
mediaelementjs mediaelement.js 2.8.1
mediaelementjs mediaelement.js 2.2.3
mediaelementjs mediaelement.js 2.6.1
mediaelementjs mediaelement.js 2.3.2
mediaelementjs mediaelement.js 1.1.1
mediaelementjs mediaelement.js 2.6.0
mediaelementjs mediaelement.js 2.1.7
mediaelementjs mediaelement.js 2.10.3
mediaelementjs mediaelement.js 1.1.5
mediaelementjs mediaelement.js 2.2.5
mediaelementjs mediaelement.js 2.6.4
mediaelementjs mediaelement.js 1.0.1
mediaelementjs mediaelement.js 2.0.0
mediaelementjs mediaelement.js 2.3.3
mediaelementjs mediaelement.js 2.1.5
mediaelementjs mediaelement.js 2.9.0
owncloud owncloud 4.5.9
mediaelementjs mediaelement.js 1.1.7
mediaelementjs mediaelement.js 2.10.0
mediaelementjs mediaelement.js 2.9.5
owncloud owncloud 4.5.1
mediaelementjs mediaelement.js 2.2.2
mediaelementjs mediaelement.js 2.0.4
mediaelementjs mediaelement.js 1.1.4
CVE-2013-2039 MEDIUM

Directory traversal vulnerability in lib/files/view.php in ownCloud before 4.0.15, 4.5.x 4.5.11, and 5.x before 5.0.6 allows remote authenticated users to access arbitrary files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2013-2040 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5.11, and 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2013-2041 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via the (1) tag parameter to apps/bookmarks/ajax/addBookmark.php or (2) dir parameter to apps/files/ajax/newfile.php, which is passed to apps/files/js/files.js.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.0
CVE-2013-2042 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5.11, and 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via the url parameter to (1) apps/bookmarks/ajax/addBookmark.php or (2) apps/bookmarks/ajax/editBookmark.php.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2013-2043 MEDIUM

apps/calendar/ajax/events.php in ownCloud before 4.5.11 and 5.x before 5.0.6 does not properly check the ownership of a calendar, which allows remote authenticated users to download arbitrary calendars via the calendar_id parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.8
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.5.3
CVE-2013-2044 MEDIUM

Open redirect vulnerability in the Login Page (index.php) in ownCloud before 5.0.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 5.0.0
CVE-2013-2045 MEDIUM

SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.0
CVE-2013-2046 MEDIUM

SQL injection vulnerability in lib/bookmarks.php in ownCloud Server 4.5.x before 4.5.11 and 5.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.8
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.5.3
CVE-2013-2047 LOW

The login page (aka index.php) in ownCloud before 5.0.6 does not disable the autocomplete setting for the password parameter, which makes it easier for physically proximate attackers to guess the password.

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 5.0.0
CVE-2013-2048 MEDIUM

ownCloud before 5.0.6 does not properly check permissions, which allows remote authenticated users to execute arbitrary API commands via unspecified vectors. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary API commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 5.0.0
CVE-2013-2085 MEDIUM

Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-2086 MEDIUM

The configuration loader in ownCloud 5.0.x before 5.0.6 allows remote attackers to obtain CSRF tokens and other sensitive information by reading an unspecified JavaScript file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.0
CVE-2013-2089 MEDIUM

Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the file in /data.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.4
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud *
owncloud owncloud 5.0.0
CVE-2013-2149 LOW

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.16 and 5.x before 5.0.7 allow remote authenticated users to inject arbitrary web script or HTML via vectors related to shared files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2013-2150 LOW

Multiple cross-site scripting (XSS) vulnerabilities in js/viewer.js in ownCloud before 4.5.12 and 5.x before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to shared files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.15
owncloud owncloud 4.5.4
owncloud owncloud 4.0.16
owncloud owncloud 3.0.2
owncloud owncloud 4.0.14
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 5.0.4
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 5.0.6
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2013-6403 MEDIUM

The admin page in ownCloud before 5.0.13 allows remote attackers to bypass intended access restrictions via unspecified vectors, related to MariaDB.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.11
owncloud owncloud 5.0.0
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud *
owncloud owncloud 5.0.7
CVE-2013-7344 MEDIUM

Unspecified vulnerability in core/settings.php in ownCloud before 4.0.12 and 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via unknown vectors. NOTE: this issue was SPLIT from CVE-2013-0303 due to different affected versions.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.8
owncloud owncloud 4.5.4
owncloud owncloud 4.0.0
owncloud owncloud 3.0.2
owncloud owncloud 4.0.5
owncloud owncloud 4.5.5
owncloud owncloud 4.0.7
owncloud owncloud 4.5.2
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.0.2
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.1
owncloud owncloud *
owncloud owncloud 4.0.1
owncloud owncloud 4.0.3
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
CVE-2014-1665 LOW

Cross-site scripting (XSS) vulnerability in ownCloud before 6.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an uploaded file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-2044 HIGH

Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on Windows, allows remote authenticated users to bypass intended access restrictions, upload files with arbitrary names, and execute arbitrary code via an Alternate Data Stream (ADS) syntax in the filename parameter, as demonstrated using .htaccess::$DATA to upload a PHP program.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
owncloud owncloud 4.0.15
owncloud owncloud 4.5.4
owncloud owncloud 4.0.16
owncloud owncloud 3.0.2
owncloud owncloud 4.5.11
owncloud owncloud 4.0.14
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 4.5.7
owncloud owncloud 3.0.1
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.7
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 4.5.9
owncloud owncloud 4.0.2
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
owncloud owncloud 4.5.12
CVE-2014-2047 MEDIUM

Session fixation vulnerability in ownCloud before 6.0.2, when PHP is configured to accept session parameters through a GET request, allows remote attackers to hijack web sessions via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud 6.0.0
CVE-2014-2048 HIGH

The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-2049 MEDIUM

The default Flash Cross Domain policies in ownCloud before 5.0.15 and 6.x before 6.0.2 allows remote attackers to access user files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.0.16
owncloud owncloud 5.0.11
owncloud owncloud 5.0.4
owncloud owncloud 3.0.1
owncloud owncloud 5.0.6
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.5.12
owncloud owncloud 5.0.7
owncloud owncloud 4.0.15
owncloud owncloud 3.0.2
owncloud owncloud 4.5.11
owncloud owncloud 4.0.14
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.13
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 5.0.13
owncloud owncloud 4.0.7
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 6.0.1
owncloud owncloud 5.0.9
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2014-2050 MEDIUM

Cross-site request forgery (CSRF) vulnerability in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to hijack the authentication of users for requests that reset passwords via a crafted HTTP Host header.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-2051 HIGH

ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to conduct an LDAP injection attack via unspecified vectors, as demonstrated using a "login query."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-2052 HIGH

Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-611,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-2053 HIGH

getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
getid3 getid3 1.9.4
getid3 getid3 *
owncloud owncloud 5.0.11
getid3 getid3 1.9.3
owncloud owncloud 5.0.0
owncloud owncloud 5.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
getid3 getid3 1.9.1
owncloud owncloud 6.0.0
getid3 getid3 1.9.2
getid3 getid3 1.9.6
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
getid3 getid3 1.9.5
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 5.0.9
getid3 getid3 1.9.0
owncloud owncloud 5.0.7
CVE-2014-2054 HIGH

PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, does not disable external entity loading in libxml, which allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
phpexcel_project phpexcel *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-2055 HIGH

SabreDAV before 1.7.11, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
fruux sabredav 1.8.1
fruux sabredav 1.6.4
fruux sabredav 1.6.3
fruux sabredav 1.7.7
owncloud owncloud 5.0.11
fruux sabredav 1.8.6
fruux sabredav 1.6.6
fruux sabredav 1.7.2
owncloud owncloud 5.0.4
fruux sabredav 1.6.9
owncloud owncloud 5.0.6
fruux sabredav 1.7.6
owncloud owncloud *
fruux sabredav 1.6.8
fruux sabredav 1.8.9
fruux sabredav 1.6.10
owncloud owncloud 6.0.0
fruux sabredav 1.6.2
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
fruux sabredav *
fruux sabredav 1.8.5
owncloud owncloud 5.0.3
fruux sabredav 1.6.5
fruux sabredav 1.7.9
owncloud owncloud 5.0.7
fruux sabredav 1.8.0
fruux sabredav 1.8.3
fruux sabredav 1.6.7
fruux sabredav 1.8.2
owncloud owncloud 5.0.0
fruux sabredav 1.8.7
fruux sabredav 1.7.5
fruux sabredav 1.7.8
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
fruux sabredav 1.7.1
owncloud owncloud 5.0.14
fruux sabredav 1.7.0
fruux sabredav 1.8.4
owncloud owncloud 5.0.13
fruux sabredav 1.7.3
fruux sabredav 1.7.4
fruux sabredav 1.6.1
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 6.0.1
owncloud owncloud 5.0.9
fruux sabredav 1.6.0
CVE-2014-2056 HIGH

PHPDocX, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
phpdocx phpdocx -
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-2057 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 6.0.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 4.5.4
owncloud owncloud 4.0.16
owncloud owncloud 5.0.11
owncloud owncloud 5.0.4
owncloud owncloud 3.0.1
owncloud owncloud 5.0.6
owncloud owncloud *
owncloud owncloud 4.0.3
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 4.0.5
owncloud owncloud 4.5.8
owncloud owncloud 4.0.6
owncloud owncloud 4.0.10
owncloud owncloud 5.0.3
owncloud owncloud 4.0.2
owncloud owncloud 4.5.3
owncloud owncloud 3.0.0
owncloud owncloud 4.5.12
owncloud owncloud 5.0.7
owncloud owncloud 4.0.15
owncloud owncloud 3.0.2
owncloud owncloud 4.5.11
owncloud owncloud 4.0.14
owncloud owncloud 4.5.6
owncloud owncloud 4.5.5
owncloud owncloud 4.5.2
owncloud owncloud 5.0.0
owncloud owncloud 4.5.7
owncloud owncloud 4.0.4
owncloud owncloud 4.0.11
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 4.5.0
owncloud owncloud 3.0.3
owncloud owncloud 4.5.13
owncloud owncloud 5.0.14
owncloud owncloud 4.0.12
owncloud owncloud 4.0.8
owncloud owncloud 4.0.0
owncloud owncloud 5.0.13
owncloud owncloud 4.0.7
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 4.5.9
owncloud owncloud 5.0.9
owncloud owncloud 4.5.1
owncloud owncloud 4.5.10
owncloud owncloud 4.0.1
owncloud owncloud 4.0.9
owncloud owncloud 4.0.13
CVE-2014-2585 MEDIUM

ownCloud before 5.0.15 and 6.x before 6.0.2, when the file_external app is enabled, allows remote authenticated users to mount the local filesystem in the user's ownCloud via the mount configuration.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-3832 MEDIUM

Cross-site scripting (XSS) vulnerability in the Documents component in ownCloud Server 6.0.x before 6.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to the print_unescaped function.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.1
owncloud owncloud 6.0.2
owncloud owncloud 6.0.0
CVE-2014-3833 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Gallery and (2) core components in ownCloud Server before 5.016 and 6.0.x before 6.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to the print_unescaped function.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-3834 HIGH

ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated users to (1) access the contacts of other users via the address book or (2) rename files via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.1
owncloud owncloud *
owncloud owncloud 6.0.0
CVE-2014-3835 MEDIUM

ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not check permissions to the files_external application, which allows remote authenticated users to add external storage via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-3836 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks, (2) modify files, or (3) rename files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.1
owncloud owncloud *
owncloud owncloud 6.0.0
CVE-2014-3837 MEDIUM

The document application in ownCloud Server before 6.0.3 uses sequential values for the file_id, which allows remote authenticated users to enumerate shared files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.1
owncloud owncloud *
owncloud owncloud 6.0.0
CVE-2014-3838 MEDIUM

ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not properly check permissions, which allows remote authenticated users to read the names of files of other users by leveraging access to multiple accounts.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-3963 MEDIUM

ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-4929 MEDIUM

Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in a filename, related to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 5.0.11
owncloud owncloud 6.0.3
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 5.0.12
owncloud owncloud 5.0.4
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 6.0.1
owncloud owncloud 5.0.6
owncloud owncloud 5.0.9
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.7
CVE-2014-5341 MEDIUM

The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2014-9041 MEDIUM

The import functionality in the bookmarks application in ownCloud server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 does not validate CSRF tokens, which allow remote attackers to conduct CSRF attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9042 LOW

Cross-site scripting (XSS) vulnerability in the import functionality in the bookmarks application in ownCloud before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote authenticated users to inject arbitrary web script or HTML by importing a link with an unspecified protocol. NOTE: this can be leveraged by remote attackers using CVE-2014-9041.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9043 MEDIUM

The user_ldap (aka LDAP user and group backend) application in ownCloud before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote attackers to bypass authentication via a null byte in the password and a valid user name, which triggers an unauthenticated bind.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9044 MEDIUM

Asset Pipeline in ownCloud 7.x before 7.0.3 uses an MD5 hash of the absolute file paths of the original CSS and JS files as the name of the concatenated file, which allows remote attackers to obtain sensitive information via a brute force attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 7.0.2
owncloud owncloud 7.0.0
owncloud owncloud 7.0.1
CVE-2014-9045 MEDIUM

The FTP backend in user_external in ownCloud Server before 5.0.18 and 6.x before 6.0.6 allows remote attackers to bypass intended authentication requirements via a crafted password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9046 MEDIUM

The OC_Util::getUrlContent function in ownCloud Server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote attackers to read arbitrary files via a file:// protocol.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9047 MEDIUM

Multiple unspecified vulnerabilities in the preview system in ownCloud 6.x before 6.0.6 and 7.x before 7.0.3 allow remote attackers to read arbitrary files via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9048 MEDIUM

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.5
owncloud owncloud 5.0.11
owncloud owncloud 6.0.2
owncloud owncloud 5.0.0
owncloud owncloud 7.0.1
owncloud owncloud 5.0.16
owncloud owncloud 5.0.4
owncloud owncloud 6.0.4
owncloud owncloud 5.0.1
owncloud owncloud 5.0.2
owncloud owncloud 5.0.6
owncloud owncloud 5.0.14
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 5.0.15
owncloud owncloud 6.0.0
owncloud owncloud 5.0.8
owncloud owncloud 5.0.10
owncloud owncloud 5.0.13
owncloud owncloud 6.0.3
owncloud owncloud 5.0.12
owncloud owncloud 5.0.5
owncloud owncloud 5.0.3
owncloud owncloud 6.0.1
owncloud owncloud 7.0.2
owncloud owncloud 5.0.9
owncloud owncloud 5.0.7
CVE-2014-9049 MEDIUM

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote authenticated users to obtain all valid session IDs via an unspecified API method.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 6.0.4
owncloud owncloud 6.0.1
owncloud owncloud 6.0.5
owncloud owncloud 7.0.2
owncloud owncloud 6.0.3
owncloud owncloud 7.0.0
owncloud owncloud 6.0.2
owncloud owncloud 6.0.0
owncloud owncloud 7.0.1
CVE-2015-3011 LOW

Multiple cross-site scripting (XSS) vulnerabilities in the contacts application in ownCloud Server Community Edition before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted contact.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
debian debian_linux 7.0
CVE-2015-3013 MEDIUM

ownCloud Server before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allows remote authenticated users to bypass the file blacklist and upload arbitrary files via a file path with UTF-8 encoding, as demonstrated by uploading a .htaccess file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2015-4456 LOW

ownCloud Desktop Client before 1.8.2 does not call QNetworkReply::ignoreSslErrors with the list of errors to be ignored, which allows man-in-the-middle attackers to bypass the user's certificate distrust decision and obtain sensitive information by leveraging a self-signed certificate and a connection to a server using its own self-signed certificate.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud_desktop_client *
CVE-2015-4715 MEDIUM

The fetch function in OAuth/Curl.php in Dropbox-PHP, as used in ownCloud Server before 6.0.8, 7.x before 7.0.6, and 8.x before 8.0.4 when an external Dropbox storage has been mounted, allows remote administrators of Dropbox.com to read arbitrary files via an @ (at sign) character in unspecified POST values.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2015-4716 HIGH

Directory traversal vulnerability in the routing component in ownCloud Server before 7.0.6 and 8.0.x before 8.0.4, when running on Windows, allows remote attackers to reinstall the application or execute arbitrary code via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
microsoft windows *
owncloud owncloud 8.0.2
owncloud owncloud *
owncloud owncloud 8.0.3
owncloud owncloud 8.0.0
CVE-2015-4717 HIGH

The filename sanitization component in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 does not properly handle $_GET parameters cast by PHP to an array, which allows remote attackers to cause a denial of service (infinite loop and log file consumption) via crafted endpoint file names.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud *
owncloud owncloud 7.0.4
owncloud owncloud 7.0.0
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.5
CVE-2015-4718 HIGH

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud *
owncloud owncloud 7.0.4
owncloud owncloud 7.0.0
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.5
CVE-2015-5953 LOW

Cross-site scripting (XSS) vulnerability in the activity application in ownCloud Server before 7.0.5 and 8.0.x before 8.0.4 allows remote authenticated users to inject arbitrary web script or HTML via a " (double quote) character in a filename in a shared folder.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.2
owncloud owncloud *
owncloud owncloud 8.0.3
owncloud owncloud 8.0.0
CVE-2015-5954 MEDIUM

The virtual filesystem in ownCloud Server before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0.5 does not consider that NULL is a valid getPath return value, which allows remote authenticated users to bypass intended access restrictions and gain access to users files via a sharing link to a file with a deleted parent folder.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 7.0.6
owncloud owncloud 8.0.4
owncloud owncloud 7.0.4
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud *
owncloud owncloud 7.0.0
owncloud owncloud 7.0.5
CVE-2015-5955 MEDIUM

ownCloud iOS app before 3.4.4 does not properly switch state between multiple instances, which might allow remote instance administrators to obtain sensitive credential and cookie information by reading authentication headers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2015-6500 HIGH

Directory traversal vulnerability in ownCloud Server before 8.0.6 and 8.1.x before 8.1.1 allows remote authenticated users to list directory contents and possibly cause a denial of service (CPU consumption) via a .. (dot dot) in the dir parameter to index.php/apps/files/ajax/scan.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,CWE-399,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.5
owncloud owncloud 8.1.0
owncloud owncloud 7.0.6
owncloud owncloud 7.0.7
owncloud owncloud 8.0.4
owncloud owncloud 7.0.4
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud 7.0.0
owncloud owncloud 7.0.5
CVE-2015-6670 MEDIUM

ownCloud Server before 7.0.8, 8.0.x before 8.0.6, and 8.1.x before 8.1.1 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to apps/calendar/export.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.5
owncloud owncloud 8.1.0
owncloud owncloud 7.0.6
owncloud owncloud 7.0.7
owncloud owncloud 8.0.4
owncloud owncloud 7.0.4
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud 7.0.0
owncloud owncloud 7.0.5
CVE-2015-7298 MEDIUM

ownCloud Desktop Client before 2.0.1, when compiled with a Qt release after 5.3.x, does not call QNetworkReply::ignoreSslErrors with the list of errors to be ignored, which makes it easier for remote attackers to conduct man-in-the-middle (MITM) attacks by leveraging a server using a self-signed certificate. NOTE: this vulnerability exists because of a partial CVE-2015-4456 regression.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
qt qt 5.3.0
qt qt 5.4.1
owncloud owncloud_desktop_client *
CVE-2015-7698 HIGH

icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud smb *
CVE-2015-7699 HIGH

The files_external app in ownCloud Server before 7.0.9, 8.0.x before 8.0.7, and 8.1.x before 8.1.2 allows remote authenticated users to instantiate arbitrary classes and possibly execute arbitrary code via a crafted mount point option, related to "objectstore."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.5
owncloud owncloud 8.1.0
owncloud owncloud 7.0.6
owncloud owncloud 7.0.7
owncloud owncloud 8.0.4
owncloud owncloud 7.0.4
owncloud owncloud 8.0.3
owncloud owncloud 7.0.1
owncloud owncloud 8.0.0
owncloud owncloud 7.0.2
owncloud owncloud 7.0.3
owncloud owncloud 8.0.2
owncloud owncloud 7.0.0
owncloud owncloud 7.0.5
CVE-2016-1498 MEDIUM

Cross-site scripting (XSS) vulnerability in the OCS discovery provider component in ownCloud Server before 7.0.12, 8.0.x before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.5
owncloud owncloud 8.1.3
owncloud owncloud 8.1.0
owncloud owncloud 8.1.4
owncloud owncloud 8.0.4
owncloud owncloud 8.2.1
owncloud owncloud 8.0.3
owncloud owncloud 8.0.0
owncloud owncloud 8.0.6
owncloud owncloud 8.0.9
owncloud owncloud 8.2.0
owncloud owncloud 8.0.2
owncloud owncloud 8.1.1
owncloud owncloud *
owncloud owncloud 8.0.8
CVE-2016-1499 HIGH

ownCloud Server before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allow remote authenticated users to obtain sensitive information from a directory listing and possibly cause a denial of service (CPU consumption) via the force parameter to index.php/apps/files/ajax/scan.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,CWE-399,

Products Affected

Vendor Product Version
owncloud owncloud 8.1.3
owncloud owncloud 8.1.0
owncloud owncloud 8.1.4
owncloud owncloud 8.2.0
owncloud owncloud 8.1.1
owncloud owncloud 8.2.1
owncloud owncloud *
CVE-2016-1500 LOW

ownCloud Server before 7.0.12, 8.0.x before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2, when the "file_versions" application is enabled, does not properly check the return value of getOwner, which allows remote authenticated users to read the files with names starting with ".v" and belonging to a sharing user by leveraging an incoming share.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 8.0.5
owncloud owncloud 8.1.3
owncloud owncloud 8.1.0
owncloud owncloud 8.1.4
owncloud owncloud 8.0.4
owncloud owncloud 8.2.1
owncloud owncloud 8.0.3
owncloud owncloud 8.0.0
owncloud owncloud 8.0.6
owncloud owncloud 8.0.9
owncloud owncloud 8.2.0
owncloud owncloud 8.0.2
owncloud owncloud 8.1.1
owncloud owncloud *
owncloud owncloud 8.0.8
CVE-2016-1501 MEDIUM

ownCloud Server before 8.0.9 and 8.1.x before 8.1.4 allow remote authenticated users to obtain sensitive information via unspecified vectors, which reveals the installation path in the resulting exception messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 8.1.3
owncloud owncloud 8.1.0
owncloud owncloud 8.1.1
owncloud owncloud *
CVE-2016-5876 MEDIUM

ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery app is enabled, allows remote attackers to download arbitrary images via a direct request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
owncloud owncloud 9.0.0
owncloud owncloud 9.0.2
owncloud owncloud *
owncloud owncloud 9.0.1
CVE-2016-7102 MEDIUM

ownCloud Desktop before 2.2.3 allows local users to execute arbitrary code and possibly gain privileges via a Trojan library in a "special path" in the C: drive.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
owncloud owncloud_desktop_client *
CVE-2016-7419 LOW

Cross-site scripting (XSS) vulnerability in share.js in the gallery application in ownCloud Server before 9.0.4 and Nextcloud Server before 9.0.52 allows remote authenticated users to inject arbitrary web script or HTML via a crafted directory name.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9459 MEDIUM

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment disposition forcing the browser to download the document. However, Firefox running on Microsoft Windows would offer the user to open the data in the browser as an HTML document. Thus any injected data in the log would be executed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-209,CWE-79,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9460 MEDIUM

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content-spoofing attack in the files app. The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to display an attacker-controlled error message to the user.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-451,CWE-284,

Products Affected

Vendor Product Version
nextcloud nextcloud *
owncloud owncloud *
CVE-2016-9461 MEDIUM

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying edit check permissions on WebDAV copy actions. The WebDAV endpoint was not properly checking the permission on a WebDAV COPY action. This allowed an authenticated attacker with access to a read-only share to put new files in there. It was not possible to modify existing files.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,CWE-284,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9462 MEDIUM

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying restore privileges when restoring a file. The restore capability of Nextcloud/ownCloud was not verifying whether a user has only read-only access to a share. Thus a user with read-only access was able to restore old versions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,CWE-284,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9463 MEDIUM

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer from SMB User Authentication Bypass. Nextcloud/ownCloud include an optional and not by default enabled SMB authentication component that allows authenticating users against an SMB server. This backend is implemented in a way that tries to connect to a SMB server and if that succeeded consider the user logged-in. The backend did not properly take into account SMB servers that have any kind of anonymous auth configured. This is the default on SMB servers nowadays and allows an unauthenticated attacker to gain access to an account without valid credentials. Note: The SMB backend is disabled by default and requires manual configuration in the Nextcloud/ownCloud config file. If you have not configured the SMB backend then you're not affected by this vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-303,CWE-287,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9465 LOW

Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Stored XSS in CardDAV image export. The CardDAV image export functionality as implemented in Nextcloud/ownCloud allows the download of images stored within a vCard. Due to not performing any kind of verification on the image content this is prone to a stored Cross-Site Scripting attack.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9466 MEDIUM

Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Reflected XSS in the Gallery application. The gallery app was not properly sanitizing exception messages from the Nextcloud/ownCloud server. Due to an endpoint where an attacker could influence the error message, this led to a reflected Cross-Site-Scripting vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9467 MEDIUM

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to display an attacker-controlled error message to the user.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-451,CWE-284,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2016-9468 MEDIUM

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. The exception message displayed on the DAV endpoints contained partially user-controllable input leading to a potential misrepresentation of information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-451,CWE-284,

Products Affected

Vendor Product Version
nextcloud nextcloud_server *
owncloud owncloud *
CVE-2017-5865 MEDIUM

The password reset functionality in ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 sends different error messages depending on whether the username is valid, which allows remote attackers to enumerate user names via a large number of password reset attempts.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 9.1.1
owncloud owncloud 8.2.4
owncloud owncloud 8.2.5
owncloud owncloud 8.2.6
owncloud owncloud 8.2.2
owncloud owncloud 9.0.1
owncloud owncloud 9.0.0
owncloud owncloud 8.2.3
owncloud owncloud 9.0.3
owncloud owncloud 8.2.7
owncloud owncloud 9.0.2
owncloud owncloud 9.0.5
owncloud owncloud *
owncloud owncloud 9.0.4
owncloud owncloud 8.2.8
owncloud owncloud 9.0.6
owncloud owncloud 9.1.2
owncloud owncloud 9.1.0
CVE-2017-5866 MEDIUM

The autocomplete feature in the E-Mail share dialog in ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
owncloud owncloud 9.1.1
owncloud owncloud 8.2.4
owncloud owncloud 8.2.5
owncloud owncloud 8.2.6
owncloud owncloud 8.2.1
owncloud owncloud 8.2.2
owncloud owncloud 9.0.1
owncloud owncloud 9.0.0
owncloud owncloud 8.2.3
owncloud owncloud 9.0.3
owncloud owncloud 8.2.0
owncloud owncloud 8.2.7
owncloud owncloud 9.0.2
owncloud owncloud 9.0.5
owncloud owncloud *
owncloud owncloud 9.0.4
owncloud owncloud 8.2.8
owncloud owncloud 9.0.6
owncloud owncloud 9.1.2
owncloud owncloud 9.1.0
CVE-2017-5867 MEDIUM

ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows remote authenticated users to cause a denial of service (server hang and logfile flooding) via a one bit BMP file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
owncloud owncloud 9.1.1
owncloud owncloud 8.2.4
owncloud owncloud 8.2.5
owncloud owncloud 8.2.6
owncloud owncloud 8.2.1
owncloud owncloud 8.2.2
owncloud owncloud 9.0.1
owncloud owncloud 9.0.0
owncloud owncloud 8.2.3
owncloud owncloud 9.0.3
owncloud owncloud 8.2.0
owncloud owncloud 8.2.7
owncloud owncloud 9.0.2
owncloud owncloud 9.0.5
owncloud owncloud *
owncloud owncloud 9.0.4
owncloud owncloud 8.2.8
owncloud owncloud 9.0.6
owncloud owncloud 9.1.2
owncloud owncloud 9.1.0
CVE-2017-8896 MEDIUM

ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2017-9338 LOW

Inadequate escaping lead to XSS vulnerability in the search module in ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2. To be exploitable a user has to write or paste malicious content into the search dialogue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2017-9339 MEDIUM

A logical error in ownCloud Server before 10.0.2 caused disclosure of valid share tokens for public calendars. Thus granting an attacker potentially access to publicly shared calendars without knowing the share token.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2017-9340 MEDIUM

An attacker is logged in as a normal user and can somehow make admin to delete shared folders in ownCloud Server before 10.0.2.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-10252 MEDIUM

An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (aka Blind SSRF) or conduct a Denial Of Service attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.3 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H 2.8 5.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-10254 MEDIUM

An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-16144 LOW

When using an object storage like S3 as the file store, when a user creates a public link to a folder where anonymous users can upload files, and another user uploads a virus the files antivirus app would detect the virus but fails to delete it due to permission issues. This affects the files_antivirus component versions before 0.15.2 for ownCloud.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N 2.1 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-276,

Products Affected

Vendor Product Version
owncloud files_antivirus *
CVE-2020-16255 MEDIUM

ownCloud (Core) before 10.5 allows XSS in login page 'forgot password.'

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-28644 MEDIUM

The CSRF (Cross Site Request Forgery) token check was improperly implemented on cookie authenticated requests against some ocs API endpoints. This affects ownCloud/core version < 10.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-28645 MEDIUM

Deleting users with certain names caused system files to be deleted. Risk is higher for systems which allow users to register themselves and have the data directory in the web root. This affects ownCloud/core versions < 10.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-28646 MEDIUM

ownCloud owncloud/client before 2.7 allows DLL Injection. The desktop client loaded development plugins from certain directories when they were present.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
owncloud owncloud_desktop_client *
CVE-2020-36248 LOW

The ownCloud application before 2.15 for Android allows attackers to use adb to include a PIN preferences value in a backup archive, and consequently bypass the PIN lock feature by restoring from this archive.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@mitre.org 3.9 LOW CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N 0.3 3.6
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2020-36249 MEDIUM

The File Firewall before 2.8.0 for ownCloud Server does not properly enforce file-type restrictions for public shares.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud file_firewall *
CVE-2020-36250 LOW

In the ownCloud application before 2.15 for Android, the lock protection mechanism can be bypassed by moving the system date/time into the past.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6
cve@mitre.org 6.1 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 0.9 5.2

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2020-36251 MEDIUM

ownCloud Server before 10.3.0 allows an attacker, who has received non-administrative access to a group share, to remove everyone else's access to that share.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4
cve@mitre.org 3.5 LOW CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N 2.1 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2020-36252 LOW

ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6
cve@mitre.org 6.8 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N 2.3 4.0

CVSS 2.0

Severity: LOW

Problem Type: CWE-330,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2021-29659 MEDIUM

ownCloud 10.7 has an incorrect access control vulnerability, leading to remote information disclosure. Due to a bug in the related API endpoint, the attacker can enumerate all users in a single request by entering three whitespaces. Secondary, the retrieval of all users on a large instance could cause higher than average load on the instance.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud 10.7.0
CVE-2021-33827 HIGH

The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
owncloud files_antivirus *
CVE-2021-33828 MEDIUM

The files_antivirus component before 1.0.0 for ownCloud mishandles the protection mechanism by which malicious files (that have been uploaded to a public share) are supposed to be deleted upon detection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
owncloud files_antivirus *
CVE-2021-35946 HIGH

A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2021-35947 MEDIUM

The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker to see the internal path and the username of a public share by including invalid characters in the URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-209,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2021-35948 MEDIUM

Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled cookie.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2021-35949 MEDIUM

The shareinfo controller in the ownCloud Server before 10.8.0 allows an attacker to bypass the permission checks for upload only shares and list metadata about the share.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2021-40537 MEDIUM

Server Side Request Forgery (SSRF) vulnerability exists in owncloud/user_ldap < 0.15.4 in the settings of the user_ldap app. Administration role is necessary for exploitation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.7 LOW CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N 1.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,

Products Affected

Vendor Product Version
owncloud user_ldap *
CVE-2021-44537 MEDIUM

ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
fedoraproject fedora 35
owncloud owncloud_desktop_client *
fedoraproject fedora 36
CVE-2022-25338 MEDIUM

ownCloud owncloud/android before 2.20 has Incorrect Access Control for physically proximate attackers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2022-25339 LOW

ownCloud owncloud/android 2.20 has Incorrect Access Control for local attackers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2022-31649 MEDIUM

ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Transfer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2022-43679

The Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless. This could be abused to spoof the URL in password-reset e-mail messages.

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2023-23948

The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Version 2.21.1 of the ownCloud Android app is vulnerable to SQL injection in `FileContentProvider.kt`. This issue can lead to information disclosure. Two databases, `filelist` and `owncloud_database`, are affected. In version 3.0, the `filelist` database was deprecated. However, injections affecting `owncloud_database` remain relevant as of version 3.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2023-24804

The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the app’s internal files, and to arbitrary file write when uploading plain text files (although limited by the .txt extension). Version 3.0 fixes the reported bypasses.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5
security-advisories@github.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 1.8 2.7

Products Affected

Vendor Product Version
owncloud owncloud *
owncloud owncloud_client *
CVE-2023-49103

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app relies on a third-party GetPhpInfo.php library that provides a URL. When this URL is accessed, it reveals the configuration details of the PHP environment (phpinfo). This information includes all the environment variables of the webserver. In containerized deployments, these environment variables may include sensitive data such as the ownCloud admin password, mail server credentials, and license key. Simply disabling the graphapi app does not eliminate the vulnerability. Additionally, phpinfo exposes various other potentially sensitive configuration details that could be exploited by an attacker to gather information about the system. Therefore, even if ownCloud is not running in a containerized environment, this vulnerability should still be a cause for concern. Note that Docker containers from before February 2023 are not vulnerable to the credential disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@mitre.org 10.0 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 3.9 6.0
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
owncloud graph_api 0.3.0
owncloud graph_api 0.2.0
CVE-2023-49104

An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled. An attacker is able to pass in a crafted redirect-url that bypasses validation, and consequently allows an attacker to redirect callbacks to a Top Level Domain controlled by the attacker.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@mitre.org 8.7 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N 2.2 5.8
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
owncloud oauth2 *
CVE-2023-49105

An issue was discovered in ownCloud owncloud/core before 10.13.1. An attacker can access, modify, or delete any file without authentication if the username of a victim is known, and the victim has no signing-key configured. This occurs because pre-signed URLs can be accepted even when no signing-key is configured for the owner of the files. The earliest affected version is 10.6.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
cve@mitre.org 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
owncloud owncloud *
CVE-2025-59716

ownCloud Guests before 0.12.5 allows unauthenticated user enumeration via the /apps/guests/register/{email}/{token} endpoint. Because of insufficient validation of the supplied token in showPasswordForm, the server responds differently when an e-mail address corresponds to a valid pending guest user rather than a non-existent user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
owncloud guests *