Directory Traversal Vulnerability in ownCloud Server Allows Remote File Inclusion

Directory Traversal Vulnerability in ownCloud Server Allows Remote File Inclusion

CVE-2014-4929 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in a filename, related to index.php.

Learn more about our Cis Benchmark Audit For Server Software.