Description
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud before 4.0.5 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
http://owncloud.org/changelog/
Scores
EPSS
0.0016
EPSS Percentile
36.0%
Details
CWE
CWE-352
Status
published
Products (9)
owncloud/owncloud
< 4.0.4
owncloud/owncloud_server
3.0.0
owncloud/owncloud_server
3.0.1
owncloud/owncloud_server
3.0.2
owncloud/owncloud_server
3.0.3
owncloud/owncloud_server
4.0.0
owncloud/owncloud_server
4.0.1
owncloud/owncloud_server
4.0.2
owncloud/owncloud_server
4.0.3
Published
Sep 05, 2012
Tracked Since
Feb 18, 2026