CVE-2020-28645

Deleting users with certain names caused system files to be deleted. Risk is higher for systems which allow users to register themselves and have the data directory in the web root. This affects ownCloud/core versions < 10.6.
Configurations

Configuration 1 (hide)

cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-02-09 19:15

Updated : 2024-02-04 21:23


NVD link : CVE-2020-28645

Mitre link : CVE-2020-28645

CVE.ORG link : CVE-2020-28645


JSON object : View

Products Affected

owncloud

  • owncloud
CWE
CWE-20

Improper Input Validation