Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Improper Access Control Vulnerability - CVE-2016-9468 - Vulnerability Database
ownCloud

ownCloud Improper Access Control Vulnerability - CVE-2016-9468

Medium
Reference: CVE-2016-9468
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-9468
Title: ownCloud Improper Access Control Vulnerability
Overview:

Nextcloud Server before 9.0.54 and 10.0.1 amp ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. The exception message displayed on the DAV endpoints contained partially user-controllable input leading to a potential misrepresentation of information.