Description

The FTP backend in user_external in ownCloud Server before 5.0.18 and 6.x before 6.0.6 allows remote attackers to bypass intended authentication requirements via a crafted password.

Remediation

References

CVE-2014-9045

Related Vulnerabilities

Joomla! Core 3.x.x Race Condition (3.0.0 - 3.8.7)

PHP Uncontrolled Resource Consumption Vulnerability (CVE-2011-3336)

PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-5712)

Liferay DXP Improper Certificate Validation Vulnerability (CVE-2022-42131)

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6635)

Severity

Medium

Classification

CVE-2014-9045 CWE-287

Tags

Missing Update Known Vulnerabilities