PT-2026-55939 · Owncloud · Sharepoint For Owncloud+1
Published
2026-07-06
·
Updated
2026-07-06
·
CVE-2025-53828
CVSS v3.1
8.5
High
| Vector | AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SharePoint for ownCloud versions prior to 0.4.1
ownCloud 10 versions prior to 10.15.3
Description
An attacker with administrative privileges can exploit a Server-Side Request Forgery (SSRF) in the SharePoint app to execute arbitrary code on the system. SSRF is a flaw that allows an attacker to induce the server-side application to make requests to an unintended location.
Recommendations
Upgrade SharePoint for ownCloud to version 0.4.1.
Upgrade ownCloud 10 to version 10.15.3 or later.
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sharepoint For Owncloud
Owncloud 10