Description

Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted mount.php file in a ZIP file.

Remediation

References

CVE-2012-5609

Related Vulnerabilities

WordPress Plugin Ninja Forms with File Uploads Extension Multiple Vulnerabilities (3.0.22)

WordPress Plugin St-Daily-Tip Cross-Site Request Forgery (4.7)

Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2715)

Atlassian Jira CVE-2019-11583 Vulnerability (CVE-2019-11583)

WordPress Plugin Testimonial Slider Multiple Cross-Site Scripting Vulnerabilities (1.2.5)

Severity

Medium

Classification

CVE-2012-5609

Tags

Missing Update Known Vulnerabilities