Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2013-2089

Published: 14/03/2014 Updated: 17/03/2014
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 409
Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P
Subscribe to Owncloud

Vulnerability Summary

Incomplete blacklist vulnerability in ownCloud prior to 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the file in /data.

Vulnerable Product Search on Vulmon Subscribe to Product

owncloud owncloud 5.0.0

owncloud owncloud 5.0.1

owncloud owncloud 5.0.2

owncloud owncloud 5.0.3

owncloud owncloud

owncloud owncloud 5.0.4

References

NVD-CWE-Otherhttp://owncloud.org/about/security/advisories/oC-SA-2013-026/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook