Description
Unspecified vulnerability in core/ajax/translations.php in ownCloud before 4.0.12 and 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via unknown vectors. NOTE: this entry has been SPLIT due to different affected versions. The core/settings.php issue is covered by CVE-2013-7344.
Exploits (1)
nomisec
WORKING POC
by CiscoCXSecurity · poc
https://github.com/CiscoCXSecurity/ownCloud_RCE_CVE-2013-0303
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://owncloud.org/about/security/advisories/oC-SA-2013-006/
Scores
EPSS
0.1728
EPSS Percentile
95.1%
Details
Status
published
Products (18)
owncloud/owncloud
< 4.0.11
owncloud/owncloud_server
4.0.0
owncloud/owncloud_server
4.0.1
owncloud/owncloud_server
4.0.2
owncloud/owncloud_server
4.0.3
owncloud/owncloud_server
4.0.4
owncloud/owncloud_server
4.0.5
owncloud/owncloud_server
4.0.6
owncloud/owncloud_server
4.0.7
owncloud/owncloud_server
4.0.8
... and 8 more
Published
Mar 24, 2014
Tracked Since
Feb 18, 2026