Vulnerabilities

CVE-2013-1850

by Fred · 14/03/2014

Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.

Date published : 2014-03-14

http://owncloud.org/about/security/advisories/oC-SA-2013-009/

Similar

Tags: Cybersecurity Alert