Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
owncloud owncloud vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2016-1499
ownCloud Server prior to 8.0.10, 8.1.x prior to 8.1.5, and 8.2.x prior to 8.2.2 allow remote authenticated users to obtain sensitive information from a directory listing and possibly cause a denial of service (CPU consumption) via the force parameter to index.php/apps/files/ajax/...
Owncloud Owncloud 8.1.3
Owncloud Owncloud 8.2.1
Owncloud Owncloud
Owncloud Owncloud 8.2.0
Owncloud Owncloud 8.1.4
Owncloud Owncloud 8.1.0
Owncloud Owncloud 8.1.1
668
VMScore
CVE-2015-6500
Directory traversal vulnerability in ownCloud Server prior to 8.0.6 and 8.1.x prior to 8.1.1 allows remote authenticated users to list directory contents and possibly cause a denial of service (CPU consumption) via a .. (dot dot) in the dir parameter to index.php/apps/files/ajax/...
Owncloud Owncloud 8.0.5
Owncloud Owncloud 7.0.4
Owncloud Owncloud 7.0.1
Owncloud Owncloud 7.0.2
Owncloud Owncloud 8.0.3
Owncloud Owncloud 8.0.4
Owncloud Owncloud 7.0.3
Owncloud Owncloud 7.0.5
Owncloud Owncloud 7.0.6
Owncloud Owncloud 7.0.0
Owncloud Owncloud 8.1.0
Owncloud Owncloud 8.0.2
Owncloud Owncloud 7.0.7
Owncloud Owncloud 8.0.0
668
VMScore
CVE-2014-2051
ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2 allows remote malicious users to conduct an LDAP injection attack via unspecified vectors, as demonstrated using a "login query."
Owncloud Owncloud 6.0.0
Owncloud Owncloud 6.0.1
Owncloud Owncloud 5.0.11
Owncloud Owncloud 5.0.6
Owncloud Owncloud 5.0.2
Owncloud Owncloud 5.0.3
Owncloud Owncloud 5.0.9
Owncloud Owncloud 5.0.7
Owncloud Owncloud 5.0.0
Owncloud Owncloud 5.0.1
Owncloud Owncloud 5.0.12
Owncloud Owncloud 5.0.4
Owncloud Owncloud 5.0.13
Owncloud Owncloud 5.0.14
Owncloud Owncloud 5.0.8
Owncloud Owncloud
Owncloud Owncloud 5.0.10
Owncloud Owncloud 5.0.5
668
VMScore
CVE-2014-3834
ownCloud Server prior to 6.0.3 does not properly check permissions, which allows remote authenticated users to (1) access the contacts of other users via the address book or (2) rename files via unspecified vectors.
Owncloud Owncloud
Owncloud Owncloud 6.0.0
Owncloud Owncloud 6.0.1
668
VMScore
CVE-2014-2053
getID3() prior to 1.9.8, as used in ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2, allows remote malicious users to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
Owncloud Owncloud 5.0.11
Owncloud Owncloud 5.0.6
Owncloud Owncloud 5.0.2
Owncloud Owncloud 5.0.3
Owncloud Owncloud 5.0.9
Getid3 Getid3 1.9.0
Getid3 Getid3 1.9.5
Owncloud Owncloud 5.0.7
Getid3 Getid3 1.9.6
Getid3 Getid3 1.9.4
Owncloud Owncloud 5.0.0
Owncloud Owncloud 5.0.1
Getid3 Getid3
Owncloud Owncloud 5.0.12
Getid3 Getid3 1.9.3
Owncloud Owncloud 5.0.4
Owncloud Owncloud 5.0.13
Owncloud Owncloud 5.0.14
Owncloud Owncloud 5.0.8
Getid3 Getid3 1.9.2
Owncloud Owncloud
Owncloud Owncloud 5.0.10
668
VMScore
CVE-2014-2054
PHPExcel prior to 1.8.0, as used in ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2, does not disable external entity loading in libxml, which allows remote malicious users to read arbitrary files, cause a denial of service, or possibly have other impact via an XML Exter...
Phpexcel Project Phpexcel
Owncloud Owncloud 6.0.0
Owncloud Owncloud 6.0.1
Owncloud Owncloud 5.0.11
Owncloud Owncloud 5.0.6
Owncloud Owncloud 5.0.2
Owncloud Owncloud 5.0.3
Owncloud Owncloud 5.0.9
Owncloud Owncloud 5.0.7
Owncloud Owncloud 5.0.0
Owncloud Owncloud 5.0.1
Owncloud Owncloud 5.0.12
Owncloud Owncloud 5.0.4
Owncloud Owncloud 5.0.13
Owncloud Owncloud 5.0.14
Owncloud Owncloud 5.0.8
Owncloud Owncloud
Owncloud Owncloud 5.0.10
Owncloud Owncloud 5.0.5
668
VMScore
CVE-2014-2055
SabreDAV prior to 1.7.11, as used in ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2, allows remote malicious users to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
Fruux Sabredav 1.8.7
Fruux Sabredav 1.6.1
Fruux Sabredav 1.6.6
Fruux Sabredav 1.6.10
Fruux Sabredav 1.6.4
Fruux Sabredav 1.7.5
Fruux Sabredav 1.8.0
Fruux Sabredav 1.8.6
Fruux Sabredav 1.8.3
Fruux Sabredav
Fruux Sabredav 1.7.3
Fruux Sabredav 1.8.9
Fruux Sabredav 1.6.9
Fruux Sabredav 1.8.1
Fruux Sabredav 1.7.2
Fruux Sabredav 1.7.4
Fruux Sabredav 1.6.7
Fruux Sabredav 1.6.0
Fruux Sabredav 1.6.3
Fruux Sabredav 1.8.4
Fruux Sabredav 1.7.8
Fruux Sabredav 1.7.9
668
VMScore
CVE-2014-2056
PHPDocX, as used in ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2, allows remote malicious users to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
Owncloud Owncloud 5.0.11
Owncloud Owncloud 5.0.6
Owncloud Owncloud 5.0.2
Phpdocx Phpdocx -
Owncloud Owncloud 5.0.3
Owncloud Owncloud 5.0.9
Owncloud Owncloud 5.0.7
Owncloud Owncloud 5.0.0
Owncloud Owncloud 5.0.1
Owncloud Owncloud 5.0.12
Owncloud Owncloud 5.0.4
Owncloud Owncloud 5.0.13
Owncloud Owncloud 5.0.14
Owncloud Owncloud 5.0.8
Owncloud Owncloud
Owncloud Owncloud 5.0.10
Owncloud Owncloud 5.0.5
Owncloud Owncloud 6.0.0
Owncloud Owncloud 6.0.1
668
VMScore
CVE-2012-4392
index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote malicious users to bypass authentication via a crafted oc_token cookie value.
Owncloud Owncloud 4.0.7
605
VMScore
CVE-2021-44537
ownCloud owncloud/client prior to 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
Owncloud Owncloud Desktop Client
Fedoraproject Fedora 35
Fedoraproject Fedora 36
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »