Filtered by vendor Owncloud Subscriptions
Filtered by product Owncloud Subscriptions
Total 124 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-10254 1 Owncloud 1 Owncloud 2024-11-21 5.9 Medium
An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.
CVE-2020-10252 1 Owncloud 1 Owncloud 2024-11-21 8.3 High
An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (aka Blind SSRF) or conduct a Denial Of Service attack.
CVE-2014-2048 1 Owncloud 1 Owncloud 2024-11-21 N/A
The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.
CVE-2014-1665 1 Owncloud 1 Owncloud 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in ownCloud before 6.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an uploaded file.