Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Improper Input Validation Vulnerability - CVE-2013-1939 - Vulnerability Database
ownCloud

ownCloud Improper Input Validation Vulnerability - CVE-2013-1939

Medium
Reference: CVE-2013-1939
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-1939
Title: ownCloud Improper Input Validation Vulnerability
Overview:

The HTMLBrowser plugin in SabreDAV before 1.6.9 1.7.x before 1.7.7 and 1.8.x before 1.8.5 as used in ownCloud when running on Windows does not properly check path separators in the base path which allows remote attackers to read arbitrary files via a (backslash) character.