Vulnerabilities > CVE-2013-1851 - Unspecified vulnerability in Owncloud

047910
CVSS 3.5 - LOW
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
owncloud

Summary

Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before 4.5.8, when the user_migrate application is enabled, allows remote authenticated users to import arbitrary files to the user's account via unspecified vectors. Per: https://cwe.mitre.org/data/definitions/184.html "CWE-184: Incomplete Blacklist"