Description

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

Remediation

References

CVE-2015-4718

Related Vulnerabilities

WordPress Plugin S3 Video Cross-Site Scripting (0.983)

Joomla! Core 3.x.x Remote File Inclusion (3.0.0 - 3.2.5)

WordPress Plugin WP Statistics Multiple Unspecified Vulnerabilities (9.6.5)

Seo Panel Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-22648)

WordPress Plugin WP Job Manager Privilege Escalation (1.34.3)

Severity

Critical

Classification

CVE-2015-4718 CWE-138

Tags

Missing Update Known Vulnerabilities