what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files

OwnCloud 8.1.8 Username Disclosure
Posted Nov 29, 2019
Authored by Daniel Moreno

OwnCloud version 8.1.8 suffers from a username disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 757c36179daa923d31563d7d6f7b1f5f

Related Files

ownCloud 10.3.0 Stable Cross Site Request Forgery
Posted Nov 1, 2019
Authored by Ozer Goker

ownCloud version 10.3.0 Stable suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | c50590357ac359cdf9a8476bb5f7da9d
ownCloud 0.1.2 User Impersonation Authorization Bypass
Posted Aug 31, 2018
Authored by Thierry Viaccoz

ownCloud version 0.1.2 suffers from a user impersonation authorization bypass vulnerability.

tags | exploit, bypass
MD5 | 6bc5693824d5901a03d83caf7dbc9ee2
ownCloud iOS Application 3.7.3 Cross Site Scripting
Posted Aug 15, 2018
Authored by Sylvain Heiniger

ownCloud version 3.7.3 for iOS suffers from a cross site scripting vulnerability.

tags | exploit, xss
systems | ios
MD5 | 5ae27cad5869c1d6ba868d900a0d55c8
OwnCloud Server 10.0 User Enumeration
Posted Jan 29, 2018
Authored by n4xh4ck5

OwnCloud Server versions 8.1 through 10.0 suffer from a user enumeration vulnerability.

tags | exploit
MD5 | 266c8f033db2bfe40206e3b38c326923
NextCloud / OwnCloud Cross Site Scripting
Posted May 16, 2017
Authored by Manuel Mancera

NextCloud and OwnCloud suffer from a cross site scripting vulnerability in their error pages. OwnCloud versions 9.1.5 and below are affected. NextCloud versions prior to 11.0.3, 10.0.5, and 9.0.58 are affected.

tags | exploit, xss
advisories | CVE-2017-0891
MD5 | 90a88078574ed841e7ddfd88ba6d1a4e
ownCloud 10.0.1 Cross Site Scripting
Posted Nov 7, 2016
Authored by Felix Matei

ownCloud version 10.0.1 appears to be missing multiple patches for cross site scripting and more.

tags | exploit, xss
MD5 | dc61c7229815f86d8bc50734f06f7908
ownCloud Desktop Client 2.2.2 Privilege Escalation
Posted Aug 19, 2016
Authored by Florian Bogner

ownCloud's desktop client versions up to 2.2.2 suffer from a local privilege escalation vulnerability.

tags | exploit, local
MD5 | b1de6cc7ea2eb2b4f74d86cdb2c5377c
ownCloud 8.2.1 / 8.1.4 / 8.0.9 Information Exposure
Posted Jan 7, 2016
Authored by Dr. Erlijn van Genuchten

ownCloud versions 8.2.1 and below, 8.1.4 and below, and 8.0.9 and below suffer from an information exposure vulnerability via directory listings.

tags | exploit
advisories | CVE-2016-1499
MD5 | cb1d5a61671252d127d71dc1fa78ef09
Debian Security Advisory 3373-1
Posted Oct 19, 2015
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3373-1 - Multiple vulnerabilities were discovered in ownCloud, a cloud storage web service for files, music, contacts, calendars and many more. These flaws may lead to the execution of arbitrary code, authorization bypass, information disclosure, cross-site scripting or denial of service.

tags | advisory, web, denial of service, arbitrary, vulnerability, xss, info disclosure
systems | linux, debian
advisories | CVE-2015-4716, CVE-2015-4717, CVE-2015-4718, CVE-2015-5953, CVE-2015-5954, CVE-2015-6500, CVE-2015-6670, CVE-2015-7699
MD5 | 1af99b654f13959ad07665ad90991b65
Debian Security Advisory 3363-1
Posted Sep 21, 2015
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3363-1 - Johannes Kliemann discovered a vulnerability in ownCloud Desktop Client, the client-side of the ownCloud file sharing services. The vulnerability allows man-in-the-middle attacks in situations where the server is using self-signed certificates and the connection is already established. If the user in the client side manually distrusts the new certificate, the file syncing will continue using the malicious server as valid.

tags | advisory
systems | linux, debian
advisories | CVE-2015-4456
MD5 | fc846a048996ebda21befdc8d38b1f14
Debian Security Advisory 3244-1
Posted May 4, 2015
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3244-1 - Multiple vulnerabilities were discovered in ownCloud, a cloud storage web service for files, music, contacts, calendars and many more.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2015-3011, CVE-2015-3012, CVE-2015-3013
MD5 | 2e14cc3b36a2c5affafb3bcb6f744fd3
Mandriva Linux Security Advisory 2015-191
Posted Apr 2, 2015
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2015-191 - Multiple vulnerabilities has been discovered and corrected in owncloud. The updated packages have been upgraded to the 7.0.5 version where these security flaws has been fixed.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | 7c76c398e77bd16792b40609f6cb044d
Mandriva Linux Security Advisory 2015-190
Posted Apr 2, 2015
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2015-190 - Multiple vulnerabilities have been discovered and corrected in owncloud. The updated packages have been upgraded to the 5.0.19 version where these security flaws has been fixed.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2014-9041, CVE-2014-9042, CVE-2014-9043, CVE-2014-9045
MD5 | a097a9a0bb0d9d38e0544f8fefc2c9f5
ownCloud 7.0.0 Private RSA Key Disclosure
Posted Aug 4, 2014
Authored by Senderek Web Security

In consequence of an insufficient threat model, ownCloud is storing all user's private RSA keys in clear text in PHP session files. These unencrypted private keys can be accessed by every web application that has the privilege of the web server user. The affected files exposing cryptographic keys will be stored in the PHP session directory for a number of hours until they are removed. All versions of ownCloud since the introduction of the encryption module in version 5.0.7 including version 7.0.0 are affected.

tags | advisory, web, php, info disclosure
MD5 | 9a2fb1f3e8b44cbf8ffdd62847a1159b
Mandriva Linux Security Advisory 2014-140
Posted Jul 30, 2014
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2014-140 - Owncloud versions 5.0.17 and 6.0.4 fix an unspecified security vulnerability, as well as many other bugs.

tags | advisory
systems | linux, mandriva
MD5 | facd2f4eff487fb5cf98ee9707333a2b
Mandriva Linux Security Advisory 2014-101
Posted May 19, 2014
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2014-101 - Owncloud versions 5.0.16 and 6.0.3 fix several unspecified security vulnerabilities, as well as many other bugs.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | 6923498addb9e51ca5457c0824e696bf
Mandriva Linux Security Advisory 2014-055
Posted Mar 13, 2014
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2014-055 - Owncloud versions 5.0.15 and 6.0.2 fix several unspecified security vulnerabilities, as well as many other bugs. See the upstream Changelog for more information.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | 9be80b9cd140be524797d46e4c711d74
ownCloud 4.0.x / 4.5.x Remote Code Execution
Posted Mar 6, 2014
Authored by Alejo Murillo Moya | Site portcullis-security.com

ownCloud versions 4.0.x and 4.5.x suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2014-2044
MD5 | a10e864fb2aeae9c58f1f98773cf64ba
ownCloud 6.0.0a File Deletion / XSS / CSRF
Posted Feb 6, 2014
Authored by absane

ownCloud version 6.0.0a suffers from file deletion, cross site request forgery, and cross site scripting vulnerabilities. It has also been reported that the same cross site scripting issue also affects Pydio version 5.20.

tags | exploit, vulnerability, xss, csrf
advisories | CVE-2014-1665
MD5 | 4846c6bb074144377eca34bcb6e104ca
Mandriva Linux Security Advisory 2013-289
Posted Dec 19, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-289 - Possible security bypass on admin page under certain circumstances and MariaDB. The owncloud package has been updated to version 5.0.13, fixing this and many other issues.

tags | advisory
systems | linux, mandriva
advisories | CVE-2013-6403
MD5 | 1c91f7ec634d38e75cc5a14d72d1fc63
Mandriva Linux Security Advisory 2013-206
Posted Aug 5, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-206 - Updated owncloud package fixes security vulnerabilities. This update provides OwnCloud 5.0.9, which fixes these issues, as well as several other bugs.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | 6306e0f487fb6d6b6f9fd0a4296665f4
Mandriva Linux Security Advisory 2013-175
Posted Jun 18, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-175 - Cross-site scripting vulnerabilities in js/viewer.js inside the files_videoviewer application via multiple unspecified vectors in all ownCloud versions prior to 5.0.7 and 4.5.12 allows authenticated remote attackers to inject arbitrary web script or HTML via shared files. Cross-site scripting vulnerabilities in core/js/oc-dialogs.js via multiple unspecified vectors in all ownCloud versions prior to 5.0.7 and other versions before 4.0.16 allows authenticated remote attackers to inject arbitrary web script or HTML via shared files. This advisory provides the latest versions of owncloud which is not vulnerable to these issues.

tags | advisory, remote, web, arbitrary, vulnerability, xss
systems | linux, mandriva
advisories | CVE-2013-2150, CVE-2013-2149
MD5 | 4e00e6cd3204afeb80de1197b288b8d9
Secunia Security Advisory 51872
Posted Jan 23, 2013
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in ownCloud, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | cf3dcd061b7497fc86b3ef7e53ac4cbc
Secunia Security Advisory 51614
Posted Dec 27, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue and a vulnerability has been reported in ownCloud, which can be exploited by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.

tags | advisory, xss
MD5 | 92d36eadb42f76a94a72ada5b8fda9e2
Secunia Security Advisory 51357
Posted Nov 23, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in ownCloud, which can be exploited by malicious users to compromise a vulnerable system and malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | b979f8af25cd53e05e189e4fa1939ebe
Page 1 of 2
Back12Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    20 Files
  • 3
    Apr 3rd
    15 Files
  • 4
    Apr 4th
    5 Files
  • 5
    Apr 5th
    5 Files
  • 6
    Apr 6th
    27 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    0 Files
  • 9
    Apr 9th
    0 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close