QwikSec

Security Database

CVE

CWE

Training

CVE-2012-4752

Published: Sep 5, 2012

Modified: Sep 16, 2024

PUBLISHED

Description

appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20120810 ownCloud - matching CVEs to fix information and vice versa

mailing-list

x_refsource_MLIST

[oss-security] 20120901 Re: CVE - ownCloud

mailing-list

x_refsource_MLIST

http://owncloud.org/changelog/

x_refsource_CONFIRM

https://github.com/owncloud/core/commit/9605e1926c6081e88326bf78a02c1d1b83126c4f

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.