Multiple SQL Injections (oC-SA-2013-019)


AFFECTED SOFTWARE

  • ownCloud Server < 5.0.6 (CVE-2013-2045)
  • ownCloud Server < 4.5.11 (CVE-2013-2046)

CVE IDENTIFIERS

  • CVE-2013-2045
  • CVE-2013-2046

RISK

  • Critical

Commits

CVE-2013-2045

CVE-2013-2046

DESCRIPTION

ownCloud before 5.0.6 does not neutralize special elements that are passed to the SQL query in lib/db.php which therefore allows an authenticated attacker to execute arbitrary SQL commands. (CVE-2013-2045)

ownCloud before 5.0.6 and 4.5.11 does not neutralize special elements that are passed to the SQL query in lib/bookmarks.php which therefore allows an authenticated attacker to execute arbitrary SQL commands. (CVE-2013-2046)

Credits

The ownCloud Team would like to thank Mateusz Goik (aliantsoft.pl / CVE-2013-2045) for discovering this vulnerability.