Описание
Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [6.0.1+dfsg-1ubuntu1]] |
| lucid | DNE | |
| precise | not-affected | |
| quantal | ignored | end of life |
| raring | ignored | end of life |
| saucy | not-affected | 5.0.10+dfsg-1ubuntu1 |
| trusty | not-affected | 6.0.1+dfsg-1ubuntu1 |
| trusty/esm | DNE | trusty was not-affected [6.0.1+dfsg-1ubuntu1] |
| upstream | released | 5.0.6 |
Показывать по
EPSS
4 Medium
CVSS2
Связанные уязвимости
Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter.
Directory traversal vulnerability in apps/files_trashbin/index.php in ...
Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter.
EPSS
4 Medium
CVSS2