漏洞描述
ownCloud是德国OwnCloud公司的一套免费且开源的个人云存储解决方案,它提供文件管理、音乐存储、日历等功能。ownCloud Desktop是一个用于连接ownCloud服务器的桌面。 ownCloud Desktop 2.2.2及之前的版本中存在安全漏洞。本地攻击者可利用该漏洞执行任意代码。
ownCloud Desktop 代码注入漏洞
PoC代码
暂无相关漏洞推荐
- Docker Desktop Engine API 未授权访问漏洞
- 新华通软件云平台 /Main/Desktop/Default.aspx 权限绕过漏洞
- POC CVE-2018-13980: Zeta Producer Desktop CMS <14.2.1 - Local File Inclusion
- POC CVE-2018-19439: Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting
- POC CVE-2020-10189: ManageEngine Desktop Central Java Deserialization
- POC CVE-2021-44515: Zoho ManageEngine Desktop Central - Remote Code Execution
- POC CVE-2023-2479: Appium Desktop Server - Remote Code Execution
- POC hongfan-iodesktopdata-sqli: 红帆iOffice ioDesktopData.asmx接口SQL注入
- POC rdp-connections-without-password-allowed: Remote Desktop Connections Allowed Without Password
- POC rdp-drive-redirection-allowed: Remote Desktop Users Can Redirect Drives
- POC remote-desktop-enabled-non-server: Remote Desktop Enabled on Non-Server OS
- POC windows-active-desktop-enabled: Active Desktop Enabled
- POC core-chuangtian-cloud-rce: Core Chuangtian Cloud Desktop System - Remote Code Execution