Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
owncloud owncloud vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2020-36248
The ownCloud application prior to 2.15 for Android allows malicious users to use adb to include a PIN preferences value in a backup archive, and consequently bypass the PIN lock feature by restoring from this archive.
Owncloud Owncloud
4.6
CVSSv3
CVE-2020-36250
In the ownCloud application prior to 2.15 for Android, the lock protection mechanism can be bypassed by moving the system date/time into the past.
Owncloud Owncloud
4.4
CVSSv3
CVE-2023-24804
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the ...
Owncloud Owncloud
4.3
CVSSv3
CVE-2020-36251
ownCloud Server prior to 10.3.0 allows an attacker, who has received non-administrative access to a group share, to remove everyone else's access to that share.
Owncloud Owncloud
4.3
CVSSv3
CVE-2020-28644
The CSRF (Cross Site Request Forgery) token check was improperly implemented on cookie authenticated requests against some ocs API endpoints. This affects ownCloud/core version < 10.6.
Owncloud Owncloud
4.3
CVSSv3
CVE-2016-9461
Nextcloud Server prior to 9.0.52 & ownCloud Server prior to 9.0.4 are not properly verifying edit check permissions on WebDAV copy actions. The WebDAV endpoint was not properly checking the permission on a WebDAV COPY action. This allowed an authenticated attacker with access...
Owncloud Owncloud
Nextcloud Nextcloud Server
4.3
CVSSv3
CVE-2016-9462
Nextcloud Server prior to 9.0.52 & ownCloud Server prior to 9.0.4 are not properly verifying restore privileges when restoring a file. The restore capability of Nextcloud/ownCloud was not verifying whether a user has only read-only access to a share. Thus a user with read-onl...
Owncloud Owncloud
Nextcloud Nextcloud Server
4.3
CVSSv3
CVE-2017-5866
The autocomplete feature in the E-Mail share dialog in ownCloud Server prior to 8.1.11, 8.2.x prior to 8.2.9, 9.0.x prior to 9.0.7, and 9.1.x prior to 9.1.3 allows remote authenticated users to obtain sensitive information via unspecified vectors.
Owncloud Owncloud 9.0.6
Owncloud Owncloud 8.2.5
Owncloud Owncloud 8.2.2
Owncloud Owncloud 8.2.3
Owncloud Owncloud 9.0.0
Owncloud Owncloud 9.1.1
Owncloud Owncloud 9.0.5
Owncloud Owncloud 8.2.4
Owncloud Owncloud 8.2.7
Owncloud Owncloud 9.0.2
Owncloud Owncloud
Owncloud Owncloud 9.0.3
Owncloud Owncloud 9.0.4
Owncloud Owncloud 8.2.0
Owncloud Owncloud 8.2.1
Owncloud Owncloud 9.0.1
Owncloud Owncloud 9.1.0
Owncloud Owncloud 9.1.2
Owncloud Owncloud 8.2.6
Owncloud Owncloud 8.2.8
4.3
CVSSv3
CVE-2016-1501
ownCloud Server prior to 8.0.9 and 8.1.x prior to 8.1.4 allow remote authenticated users to obtain sensitive information via unspecified vectors, which reveals the installation path in the resulting exception messages.
Owncloud Owncloud 8.1.1
Owncloud Owncloud 8.1.0
Owncloud Owncloud 8.1.3
Owncloud Owncloud
3.7
CVSSv3
CVE-2017-5865
The password reset functionality in ownCloud Server prior to 8.1.11, 8.2.x prior to 8.2.9, 9.0.x prior to 9.0.7, and 9.1.x prior to 9.1.3 sends different error messages depending on whether the username is valid, which allows remote malicious users to enumerate user names via a l...
Owncloud Owncloud 9.0.2
Owncloud Owncloud 9.0.3
Owncloud Owncloud 9.0.4
Owncloud Owncloud 9.0.5
Owncloud Owncloud 9.1.1
Owncloud Owncloud 9.0.0
Owncloud Owncloud 8.2.2
Owncloud Owncloud 8.2.4
Owncloud Owncloud 9.1.0
Owncloud Owncloud 8.2.5
Owncloud Owncloud 8.2.6
Owncloud Owncloud 8.2.7
Owncloud Owncloud 8.2.8
Owncloud Owncloud
Owncloud Owncloud 9.1.2
Owncloud Owncloud 9.0.1
Owncloud Owncloud 9.0.6
Owncloud Owncloud 8.2.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »