First published: Mon Apr 22 2013(Updated: )
The contacts application in ownCloud before 4.5.10 and 5.x before 5.0.5 does not properly check the ownership of contacts, which allows remote authenticated users to download arbitrary contacts via unspecified vectors.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
ownCloud ownCloud | <=4.5.9 | |
ownCloud ownCloud | =4.5.0 | |
ownCloud ownCloud | =4.5.1 | |
ownCloud ownCloud | =4.5.2 | |
ownCloud ownCloud | =4.5.3 | |
ownCloud ownCloud | =4.5.4 | |
ownCloud ownCloud | =4.5.5 | |
ownCloud ownCloud | =4.5.6 | |
ownCloud ownCloud | =4.5.7 | |
ownCloud ownCloud | =4.5.8 | |
ownCloud ownCloud | =5.0.0 | |
ownCloud ownCloud | =5.0.1 | |
ownCloud ownCloud | =5.0.2 | |
ownCloud ownCloud | =5.0.3 | |
ownCloud ownCloud | =5.0.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.