Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Other Vulnerability - CVE-2014-2054 - Vulnerability Database
ownCloud

ownCloud Other Vulnerability - CVE-2014-2054

High
Reference: CVE-2014-2054
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-2054
Title: ownCloud Other Vulnerability
Overview:

PHPExcel before 1.8.0 as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 does not disable external entity loading in libxml which allows remote attackers to read arbitrary files cause a denial of service or possibly have other impact via an XML External Entity (XXE) attack.