Vulnerabilities > Owncloud > Owncloud > 5.0.5

DATE CVE VULNERABILITY TITLE RISK
2014-03-09 CVE-2013-2046 SQL Injection vulnerability in Owncloud
SQL injection vulnerability in lib/bookmarks.php in ownCloud Server 4.5.x before 4.5.11 and 5.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
owncloud CWE-89
6.5
6.5
2014-03-09 CVE-2013-2045 SQL Injection vulnerability in Owncloud
SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
owncloud CWE-89
6.5
6.5
2013-12-24 CVE-2013-6403 Permissions, Privileges, and Access Controls vulnerability in Owncloud
The admin page in ownCloud before 5.0.13 allows remote attackers to bypass intended access restrictions via unspecified vectors, related to MariaDB.
network
owncloud CWE-264
6.8
6.8