FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
3166222b-c6a4-11e5-96d6-14dae9d210b8owncloud -- multiple vulnerabilities

Owncloud reports:

  • Reflected XSS in OCS provider discovery (oC-SA-2016-001)

  • Information Exposure Through Directory Listing in the file scanner (oC-SA-2016-002)

  • Disclosure of files that begin with ".v" due to unchecked return value (oC-SA-2016-003)


Discovery 2015-12-23
Entry 2016-01-29
owncloud
< 8.2.2

https://owncloud.org/blog/owncloud-8-2-2-8-1-5-8-0-10-and-7-0-12-here-with-sharing-ldap-fixes/
https://owncloud.org/security/advisory/?id=oc-sa-2016-001
https://owncloud.org/security/advisory/?id=oc-sa-2016-002
https://owncloud.org/security/advisory/?id=oc-sa-2016-003
CVE-2016-1498
CVE-2016-1499
CVE-2016-1500
d7a43ee6-d2d5-11e2-9894-002590082ac6owncloud -- Multiple security vulnerabilities

The ownCloud development team reports:

oC-SA-2013-019 / CVE-2013-2045: Multiple SQL Injections. Credit to Mateusz Goik (aliantsoft.pl).

oC-SA-2013-020 / CVE-2013-[2039,2085]: Multiple directory traversals. Credit to Mateusz Goik (aliantsoft.pl).

oC-SQ-2013-021 / CVE-2013-[2040-2042]: Multiple XSS vulnerabilities. Credit to Mateusz Goik (aliantsoft.pl) and Kacper R. (http://devilteam.pl).

oC-SA-2013-022 / CVE-2013-2044: Open redirector. Credit to Mateusz Goik (aliantsoft.pl).

oC-SA-2013-023 / CVE-2013-2047: Password autocompletion.

oC-SA-2013-024 / CVE-2013-2043: Privilege escalation in the calendar application. Credit to Mateusz Goik (aliantsoft.pl).

oC-SA-2013-025 / CVE-2013-2048: Privilege escalation and CSRF in the API.

oC-SA-2013-026 / CVE-2013-2089: Incomplete blacklist vulnerability.

oC-SA-2013-027 / CVE-2013-2086: CSRF token leakage.

oC-SA-2013-028 / CVE-2013-[2149-2150]: Multiple XSS vulnerabilities.


Discovery 2013-05-14
Entry 2013-06-11
owncloud
< 5.0.7

http://owncloud.org/about/security/advisories/oC-SA-2013-019/
http://owncloud.org/about/security/advisories/oC-SA-2013-020/
http://owncloud.org/about/security/advisories/oC-SA-2013-021/
http://owncloud.org/about/security/advisories/oC-SA-2013-022/
http://owncloud.org/about/security/advisories/oC-SA-2013-023/
http://owncloud.org/about/security/advisories/oC-SA-2013-024/
http://owncloud.org/about/security/advisories/oC-SA-2013-025/
http://owncloud.org/about/security/advisories/oC-SA-2013-026/
http://owncloud.org/about/security/advisories/oC-SA-2013-027/
http://owncloud.org/about/security/advisories/oC-SA-2013-028/
CVE-2013-2039
CVE-2013-2040
CVE-2013-2041
CVE-2013-2042
CVE-2013-2043
CVE-2013-2044
CVE-2013-2045
CVE-2013-2047
CVE-2013-2048
CVE-2013-2085
CVE-2013-2086
CVE-2013-2089
CVE-2013-2149
CVE-2013-2150