buherator on Nostr: CVE-2023-49103 (ownCloud): "It seems more likely that sensitive environment variables ...
CVE-2023-49103 (ownCloud):
"It seems more likely that sensitive environment variables would be present in a Docker installation, as this is a common technique used to pass secrets to a Docker container at runtime, however as we have seen, exploiting ownCloud shipped as a Docker image does not seem possible, due to either the additional rewrite rules in the .htaccess file, or the inclusion of phpinfo on the list of disabled PHP functions in certain ownCloud Docker images."
https://attackerkb.com/assessments/a2b1b41a-0a26-4226-a53b-ae72e6c65107
"It seems more likely that sensitive environment variables would be present in a Docker installation, as this is a common technique used to pass secrets to a Docker container at runtime, however as we have seen, exploiting ownCloud shipped as a Docker image does not seem possible, due to either the additional rewrite rules in the .htaccess file, or the inclusion of phpinfo on the list of disabled PHP functions in certain ownCloud Docker images."
https://attackerkb.com/assessments/a2b1b41a-0a26-4226-a53b-ae72e6c65107