Vulnerabilities > Owncloud

DATE CVE VULNERABILITY TITLE RISK
2023-11-21 CVE-2023-49103 Unspecified vulnerability in Owncloud Graph API 0.2.0/0.3.0
An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1.
network
low complexity
owncloud
7.5
2023-11-21 CVE-2023-49104 Open Redirect vulnerability in Owncloud Oauth2
An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled.
network
low complexity
owncloud CWE-601
6.1
2023-11-21 CVE-2023-49105 Improper Authentication vulnerability in Owncloud
An issue was discovered in ownCloud owncloud/core before 10.13.1.
network
low complexity
owncloud CWE-287
critical
9.8
2023-02-13 CVE-2023-23948 SQL Injection vulnerability in Owncloud
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders.
local
low complexity
owncloud CWE-89
5.5
2023-02-13 CVE-2023-24804 Path Traversal vulnerability in Owncloud
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders.
local
low complexity
owncloud CWE-22
4.4
2022-11-10 CVE-2022-43679 Unspecified vulnerability in Owncloud
The Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless.
network
low complexity
owncloud
5.3
2022-06-09 CVE-2022-31649 Exposure of Resource to Wrong Sphere vulnerability in Owncloud
ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or Transfer.
network
low complexity
owncloud CWE-668
7.5
2022-04-07 CVE-2022-25339 Unspecified vulnerability in Owncloud
ownCloud owncloud/android 2.20 has Incorrect Access Control for local attackers.
local
low complexity
owncloud
5.5
2022-04-07 CVE-2022-25338 Unspecified vulnerability in Owncloud
ownCloud owncloud/android before 2.20 has Incorrect Access Control for physically proximate attackers.
low complexity
owncloud
6.8
2022-01-15 CVE-2021-33827 OS Command Injection vulnerability in Owncloud Files Antivirus
The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings.
network
low complexity
owncloud CWE-78
7.2