Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Permissions Privileges and Access Controls Vulnerability - CVE-2013-1963 - Vulnerability Database
ownCloud

ownCloud Permissions Privileges and Access Controls Vulnerability - CVE-2013-1963

Medium
Reference: CVE-2013-1963
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-1963
Title: ownCloud Permissions Privileges and Access Controls Vulnerability
Overview:

The contacts application in ownCloud before 4.5.10 and 5.x before 5.0.5 does not properly check the ownership of contacts which allows remote authenticated users to download arbitrary contacts via unspecified vectors.