Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2014-9046 - Vulnerability Database
ownCloud

ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2014-9046

Medium
Reference: CVE-2014-9046
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-9046
Title: ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

The OC_Util::getUrlContent function in ownCloud Server before 5.0.18 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to read arbitrary files via a file:// protocol.