Vulnerabilities > CVE-2013-1851 - Unspecified vulnerability in Owncloud
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
owncloud
Summary
Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before 4.5.8, when the user_migrate application is enabled, allows remote authenticated users to import arbitrary files to the user's account via unspecified vectors. Per: https://cwe.mitre.org/data/definitions/184.html "CWE-184: Incomplete Blacklist"