Description

Directory traversal vulnerability in lib/files/view.php in ownCloud before 4.0.15, 4.5.x 4.5.11, and 5.x before 5.0.6 allows remote authenticated users to access arbitrary files via unspecified vectors.

Remediation

References

CVE-2013-2039

Related Vulnerabilities

IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1740)

WordPress Plugin AJAX Comment Page Cross-Site Scripting (3.25)

WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.3.3)

WordPress Plugin Quick Event Manager Security Bypass (9.2.16)

WordPress Plugin Contact Form by BestWebSoft Cross-Site Request Forgery (3.82)

Severity

Medium

Classification

CVE-2013-2039 CWE-22

Tags

Missing Update Known Vulnerabilities