owncloud

168 tracked vulnerabilities.

CVE-2014-9048
ownCloud Server <6.0.6, <7.0.3 - Auth Bypass
Feb 04, 2015
EPSS 0.01
CVE-2014-9047
ownCloud <6.0.6, <7.0.3 - Info Disclosure
Feb 04, 2015
EPSS 0.00
CVE-2014-9046
ownCloud Server <5.0.18, <6.0.6, <7.0.3 - Info Disclosure
Feb 04, 2015
EPSS 0.00
CVE-2014-9045
ownCloud Server <5.0.18, <6.0.6 - Auth Bypass
Feb 04, 2015
EPSS 0.01
CVE-2014-9044
owncloud_server 7.x - Sensitive Information Exposure via Asset Pipeline MD5 Hash
Feb 04, 2015
EPSS 0.00
CVE-2014-9043
ownCloud <5.0.18, <6.0.6, <7.0.3 - Auth Bypass
Feb 04, 2015
EPSS 0.00
CVE-2014-9042
ownCloud <5.0.18,6.x<6.0.6,7.x<7.0.3 - XSS
Feb 04, 2015
EPSS 0.00
CVE-2014-9041
ownCloud <5.0.18, <6.0.6, <7.0.3 - CSRF
Feb 04, 2015
EPSS 0.00
CVE-2014-5341
owncloud < 6.0.4 - Exposure of Sensitive Information via SFTP External Storage Driver
Feb 04, 2015
EPSS 0.00
CVE-2014-2044
ownCloud < 5.0 - Authenticated Remote Code Execution via Alternate Data Stream Filename Bypass
Oct 06, 2014
EPSS 0.12
CVE-2014-4929
ownCloud Server <6.0.4 - Path Traversal
Aug 20, 2014
EPSS 0.01
CVE-2014-2051
ownCloud Server <5.0.15 & <6.0.2 - Code Injection
Jun 05, 2014
EPSS 0.01
CVE-2014-3963
ownCloud Server <6.0.1 - Info Disclosure
Jun 04, 2014
EPSS 0.00
CVE-2014-3838
ownCloud Server < 5.0.16 and 6.0.x < 6.0.3 - Authenticated File Name Disclosure
Jun 04, 2014
EPSS 0.00
CVE-2014-3837
ownCloud Server < 6.0.3 - Authenticated Shared File Enumeration via Sequential File ID
Jun 04, 2014
EPSS 0.00
CVE-2014-3836
owncloud < 6.0.3 - Cross-Site Request Forgery
Jun 04, 2014
EPSS 0.00
CVE-2014-3835
ownCloud Server < 5.0.16 and 6.0.x < 6.0.3 - Authenticated Unauthorized External Storage Addition
Jun 04, 2014
EPSS 0.00
CVE-2014-3834
owncloud < 6.0.3 - Authenticated Unauthorized Data Access and File Rename
Jun 04, 2014
EPSS 0.00
CVE-2014-3833
ownCloud < 5.0.15 and 6.0.x < 6.0.3 - Cross-Site Scripting in Gallery and Core Components
Jun 04, 2014
EPSS 0.00
CVE-2014-3832
owncloud_server - Cross-Site Scripting in Documents Component
Jun 04, 2014
EPSS 0.00
CVE-2014-2056
ownCloud Server < 5.0.15 and 6.0.x < 6.0.2 - XML External Entity Injection via PHPDocX
Jun 04, 2014
EPSS 0.01
CVE-2014-2055
SabreDAV < 1.7.11 - XML External Entity Injection
Jun 04, 2014
EPSS 0.01
CVE-2014-2054
ownCloud Server < 5.0.15 and 6.0.x < 6.0.2 - XML External Entity Injection via PHPExcel
Jun 04, 2014
EPSS 0.01
CVE-2014-2053
getID3 < 1.9.8 - XML External Entity Injection
Jun 04, 2014
EPSS 0.03
CVE-2014-2585
ownCloud <5.0.15 & <6.0.2 - Remote Authenticated Filesystem Mount
Mar 24, 2014
EPSS 0.00
Products
owncloud 116 owncloud_server 108 owncloud_client 7 owncloud_desktop_client 5 files_antivirus 3 OwnCloud 1 file_firewall 1 graph_api 1 guests 1 oauth2 1 smb 1 user_ldap 1
Quick Filters
Critical CVEs With Exploits In CISA KEV