ownCloud server 9.1.3User enumeration with error messages
Information disclosure in email field dialog at sharing
Flooding logfiles with a 1 Bit BMP File
ownCloud desktop 2.2.3Local Code Injection
ownCloud mobile iOS 3.4.4Improper validation of certificates within the iOS application
Credentials potentially leaked to other configured ownCloud instance
contacts: SQL Injection (oC-SA-2013-012)
2nd April 2013
Risk level: High
ownCloud before 5.0.1 does not neutralize special elements that are passed to the SQL query in addressbookprovider.php which therefore allows an authenticated attacker to execute arbitrary SQL commands.
- ownCloud Server < 5.0.1 (CVE-2013-1893)
It is recommended that all instances are upgraded to ownCloud Server 5.0.1.
The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:
- Alexander Bürger - Vulnerability discovery and disclosure.