Description
Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.
Remediation
References
Related Vulnerabilities
PHP Double Free Vulnerability (CVE-2019-11049)
WordPress Plugin YITH WooCommerce Request A Quote Security Bypass (1.4.7)
MySQL CVE-2022-21595 Vulnerability (CVE-2022-21595)
Oracle JRE CVE-2013-0419 Vulnerability (CVE-2013-0419)
WordPress Plugin Gallery-Flagallery Photo Portfolio Information Disclosure (4.24)