Description

PHPDocX, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

Remediation

References

CVE-2014-2056

Related Vulnerabilities

Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-20417)

WordPress 4.8.x Cross-Site Request Forgery (4.8 - 4.8.8)

Oracle JRE CVE-2013-2423 Vulnerability (CVE-2013-2423)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3617)

WordPress 5.7.x Directory Traversal (5.7 - 5.7.11)

Severity

High

Classification

CVE-2014-2056

Tags

Missing Update Known Vulnerabilities