CVE-2013-1939 in ownCloudالمعلومات

الملخص

بحسب MITRE

The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

19/02/2013

إفشاء

14/03/2014

الاعتدال

تمت الموافقة

إدخال

VDB-66650

EPSS

0.01779

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!