ownCloud Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-2085 - Vulnerability Database

ownCloud Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-2085

Medium
Reference: CVE-2013-2085
Title: ownCloud Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter.