Owncloud Server vulnerabilities

CVE-2015-3013 [MEDIUM] CWE-74 CVE-2015-3013: ownCloud Server before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allows remote authenticated us ownCloud Server before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allows remote authenticated users to bypass the file blacklist and upload arbitrary files via a file path with UTF-8 encoding, as demonstrated by uploading a .htaccess file.

CVE-2014-9045 [MEDIUM] CWE-287 CVE-2014-9045: The FTP backend in user_external in ownCloud Server before 5.0.18 and 6.x before 6.0.6 allows remote The FTP backend in user_external in ownCloud Server before 5.0.18 and 6.x before 6.0.6 allows remote attackers to bypass intended authentication requirements via a crafted password.

CVE-2014-9048 [MEDIUM] CWE-264 CVE-2014-9048: The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote att The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.

CVE-2014-9044 [MEDIUM] CWE-200 CVE-2014-9044: Asset Pipeline in ownCloud 7.x before 7.0.3 uses an MD5 hash of the absolute file paths of the origi Asset Pipeline in ownCloud 7.x before 7.0.3 uses an MD5 hash of the absolute file paths of the original CSS and JS files as the name of the concatenated file, which allows remote attackers to obtain sensitive information via a brute force attack.

CVE-2014-9041 [MEDIUM] CWE-352 CVE-2014-9041: The import functionality in the bookmarks application in ownCloud server before 5.0.18, 6.x before 6 The import functionality in the bookmarks application in ownCloud server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 does not validate CSRF tokens, which allow remote attackers to conduct CSRF attacks.

CVE-2014-9047 [MEDIUM] CVE-2014-9047: Multiple unspecified vulnerabilities in the preview system in ownCloud 6.x before 6.0.6 and 7.x befo Multiple unspecified vulnerabilities in the preview system in ownCloud 6.x before 6.0.6 and 7.x before 7.0.3 allow remote attackers to read arbitrary files via unknown vectors.

CVE-2014-9049 [MEDIUM] CWE-200 CVE-2014-9049: The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote aut The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote authenticated users to obtain all valid session IDs via an unspecified API method.

CVE-2014-9046 [MEDIUM] CWE-200 CVE-2014-9046: The OC_Util::getUrlContent function in ownCloud Server before 5.0.18, 6.x before 6.0.6, and 7.x befo The OC_Util::getUrlContent function in ownCloud Server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote attackers to read arbitrary files via a file:// protocol.

CVE-2014-9043 [MEDIUM] CWE-287 CVE-2014-9043: The user_ldap (aka LDAP user and group backend) application in ownCloud before 5.0.18, 6.x before 6. The user_ldap (aka LDAP user and group backend) application in ownCloud before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote attackers to bypass authentication via a null byte in the password and a valid user name, which triggers an unauthenticated bind.

CVE-2014-9042 [LOW] CVE-2014-9042: Cross-site scripting (XSS) vulnerability in the import functionality in the bookmarks application in Cross-site scripting (XSS) vulnerability in the import functionality in the bookmarks application in ownCloud before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 allows remote authenticated users to inject arbitrary web script or HTML by importing a link with an unspecified protocol. NOTE: this can be leveraged by remote attackers using CVE-2014-9041.

CVE-2014-2044 [HIGH] CWE-94 CVE-2014-2044: Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on Window Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on Windows, allows remote authenticated users to bypass intended access restrictions, upload files with arbitrary names, and execute arbitrary code via an Alternate Data Stream (ADS) syntax in the filename parameter, as demonstrated using .htaccess::$DATA to upload

CVE-2014-4929 [MEDIUM] CWE-22 CVE-2014-4929: Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0. Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in a filename, related to index.php.

CVE-2014-2051 [HIGH] CWE-94 CVE-2014-2051: ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to conduct an LDAP inje ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to conduct an LDAP injection attack via unspecified vectors, as demonstrated using a "login query."

CVE-2013-0302 [MEDIUM] CVE-2013-0302: Unspecified vulnerability in ownCloud Server before 4.0.12 allows remote attackers to obtain sensiti Unspecified vulnerability in ownCloud Server before 4.0.12 allows remote attackers to obtain sensitive information via unspecified vectors related to "inclusion of the Amazon SDK testing suite." NOTE: due to lack of details, it is not clear whether the issue exists in ownCloud itself, or in Amazon SDK.

CVE-2013-0304 [MEDIUM] CWE-264 CVE-2013-0304: ownCloud Server before 4.5.7 does not properly check ownership of calendars, which allows remote aut ownCloud Server before 4.5.7 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to /apps/calendar/export.php. NOTE: this issue has been reported as a cross-site request forgery (CSRF) vulnerability, but due to lack of details, it is uncertain what the root cause i

CVE-2014-2055 [HIGH] CVE-2014-2055: SabreDAV before 1.7.11, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remo SabreDAV before 1.7.11, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVE-2014-2053 [HIGH] CVE-2014-2053: getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remot getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVE-2014-2056 [HIGH] CVE-2014-2056: PHPDocX, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to PHPDocX, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVE-2014-3834 [HIGH] CWE-264 CVE-2014-3834: ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated ownCloud Server before 6.0.3 does not properly check permissions, which allows remote authenticated users to (1) access the contacts of other users via the address book or (2) rename files via unspecified vectors.

CVE-2014-2054 [HIGH] CVE-2014-2054: PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, does not dis PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, does not disable external entity loading in libxml, which allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.