(((Arthur Schiwon)))

Operation OwnedCloud: Exploitation and Post-exploitation Persistence - Rhino Security Labs


At the time of writing this, NextCloud has patched the authentication bypass vulnerability, while OwnCloud has chosen not to.

#nextcloud #owncloud

https://rhinosecuritylabs.com/2016/10/operation-ownedcloud-exploitation-post-exploitation-persistence/

Security advisory at Nextcloud: https://nextcloud.com/security/advisory/?id=nc-sa-2016-006

Attention Required! | CloudFlare

#nextcloud #owncloud