Unrated severityNVD Advisory· Published May 8, 2015· Updated Jun 17, 2026
CVE-2015-3013
CVE-2015-3013
Description
ownCloud Server before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allows remote authenticated users to bypass the file blacklist and upload arbitrary files via a file path with UTF-8 encoding, as demonstrated by uploading a .htaccess file.
Affected products
2Patches
Vulnerability mechanics
References
4- owncloud.org/security/advisory/nvdPatchVendor Advisory
- owncloud.org/security/advisory/nvdPatchVendor Advisory
- www.debian.org/security/2015/dsa-3244nvdVendor Advisory
- www.securityfocus.com/bid/74451nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.