Owncloud vulnerabilities
122 known vulnerabilities affecting owncloud/owncloud.
Total CVEs
122
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH7MEDIUM93LOW14
Vulnerabilities
Page 1 of 7
CVE-2014-2044P3HIGHCVSS 7.5PoC≤ 4.5.132014-10-06
CVE-2014-2044 [HIGH] CWE-94 CVE-2014-2044: Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on Window
Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on Windows, allows remote authenticated users to bypass intended access restrictions, upload files with arbitrary names, and execute arbitrary code via an Alternate Data Stream (ADS) syntax in the filename parameter, as demonstrated using .htaccess::$DATA to upload
nvd
CVE-2015-4716P2CRITICALCVSS 10.0≤ 7.0.52015-10-21
CVE-2015-4716 [CRITICAL] CWE-22 CVE-2015-4716: Directory traversal vulnerability in the routing component in ownCloud Server before 7.0.6 and 8.0.x
Directory traversal vulnerability in the routing component in ownCloud Server before 7.0.6 and 8.0.x before 8.0.4, when running on Windows, allows remote attackers to reinstall the application or execute arbitrary code via unspecified vectors.
nvd
CVE-2016-9463P3HIGHCVSS 8.1≥ 8.2.0, < 8.2.9≥ 9.0.0, < 9.0.4+1 more2017-03-28
CVE-2016-9463 [HIGH] CWE-303 CVE-2016-9463: Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer fr
Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer from SMB User Authentication Bypass. Nextcloud/ownCloud include an optional and not by default enabled SMB authentication component that allows authenticating users against an SMB server. This backend is implemented in a way that tries to connect to a SMB s
nvd
CVE-2019-25337P3CRITICALCVSS 9.8v8.1.82026-02-12
CVE-2019-25337 [CRITICAL] CWE-203 CVE-2019-25337: OwnCloud 8.1.8 contains a username enumeration vulnerability that allows remote attackers to discove
OwnCloud 8.1.8 contains a username enumeration vulnerability that allows remote attackers to discover user accounts by manipulating the share.php endpoint. Attackers can send crafted GET requests to /index.php/core/ajax/share.php with a wildcard search parameter to retrieve comprehensive user information.
nvd
CVE-2014-2048P3CRITICALCVSS 9.8fixed in 5.0.152018-03-26
CVE-2014-2048 [CRITICAL] CWE-284 CVE-2014-2048: The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by lev
The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.
nvd
CVE-2012-2270P4MEDIUMCVSS 5.8PoC≤ 3.0.22012-04-20
CVE-2012-2270 [MEDIUM] CWE-20 CVE-2012-2270: Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote
Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.
nvd
CVE-2020-28645P3CRITICALCVSS 9.1fixed in 10.6.02021-02-09
CVE-2020-28645 [CRITICAL] CWE-20 CVE-2020-28645: Deleting users with certain names caused system files to be deleted. Risk is higher for systems whic
Deleting users with certain names caused system files to be deleted. Risk is higher for systems which allow users to register themselves and have the data directory in the web root. This affects ownCloud/core versions < 10.6.
nvd
CVE-2021-35946P3CRITICALCVSS 9.8fixed in 10.8.02021-09-07
CVE-2021-35946 [CRITICAL] CWE-269 CVE-2021-35946: A receiver of a federated share with access to the database with ownCloud version before 10.8 could
A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.
nvd
CVE-2015-7698P3CRITICALCVSS 9.0≤ 8.1.12015-10-21
CVE-2015-7698 [CRITICAL] CWE-78 CVE-2015-7698: icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.
nvd
CVE-2014-1665P4MEDIUMCVSS 5.4PoCfixed in 6.0.12018-03-20
CVE-2014-1665 [MEDIUM] CWE-79 CVE-2014-1665: Cross-site scripting (XSS) vulnerability in ownCloud before 6.0.1 allows remote authenticated users
Cross-site scripting (XSS) vulnerability in ownCloud before 6.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an uploaded file.
nvdosv
CVE-2015-4718P3CRITICALCVSS 9.0≤ 6.0.72015-10-21
CVE-2015-4718 [CRITICAL] CWE-78 CVE-2015-4718: The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x befor
The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.
nvd
CVE-2013-1942P4MEDIUMCVSS 4.3PoC≤ 5.0.32013-08-15
CVE-2013-1942 [MEDIUM] CWE-79 CVE-2013-1942: Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF comp
Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.2.20, as used in ownCloud Server before 5.0.4 and other products, allow remote attackers to inject arbitrary web script or HTML via the (1) jQuery or (2) id parameters, as demonstrated using document.write in the j
nvd
CVE-2014-2052P3CRITICALCVSS 9.8fixed in 5.0.152020-02-11
CVE-2014-2052 [CRITICAL] CWE-611 CVE-2014-2052: Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attac
Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
nvd
CVE-2016-1499P3HIGHCVSS 8.5≤ 8.0.9v8.2.0+1 more2016-01-08
CVE-2016-1499 [HIGH] CWE-200 CVE-2016-1499: ownCloud Server before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allow remote authenticated
ownCloud Server before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allow remote authenticated users to obtain sensitive information from a directory listing and possibly cause a denial of service (CPU consumption) via the force parameter to index.php/apps/files/ajax/scan.php.
nvd
CVE-2013-2048P3MEDIUMCVSS 6.5≤ 5.0.52014-03-14
CVE-2013-2048 [MEDIUM] CWE-264 CVE-2013-2048: ownCloud before 5.0.6 does not properly check permissions, which allows remote authenticated users t
ownCloud before 5.0.6 does not properly check permissions, which allows remote authenticated users to execute arbitrary API commands via unspecified vectors. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary API commands.
nvdosv
CVE-2020-10252P3HIGHCVSS 8.3fixed in 10.4.02021-02-19
CVE-2020-10252 [HIGH] CWE-918 CVE-2020-10252: An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharin
An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (aka Blind SSRF) or conduct a Denial Of Service attack.
nvd
CVE-2012-4389P3MEDIUMCVSS 6.8≤ 4.0.62012-09-05
CVE-2012-4389 [MEDIUM] CVE-2012-4389: Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.7 allows remote attacke
Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.7 allows remote attackers to execute arbitrary code by uploading a crafted .htaccess file in an import.zip file and accessing an uploaded PHP file.
nvd
CVE-2022-31649P3HIGHCVSS 7.5fixed in 10.10.02022-06-09
CVE-2022-31649 [HIGH] CWE-668 CVE-2022-31649: ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Tra
ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Transfer.
nvd
CVE-2014-4929P3MEDIUMCVSS 6.8≤ 5.0.162014-08-20
CVE-2014-4929 [MEDIUM] CWE-22 CVE-2014-4929: Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.
Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in a filename, related to index.php.
nvd
CVE-2014-3834P3HIGHCVSS 7.5≤ 6.0.22014-06-04
CVE-2014-3834 [HIGH] CWE-264 CVE-2014-3834: ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated
ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated users to (1) access the contacts of other users via the address book or (2) rename files via unspecified vectors.
nvd
1 / 7Next →