Cross-site request forgery (CSRF) vulnerability in ownCloud prior to 3.0.3 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert cross-site scripting (XSS) sequences via vectors involving contacts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
owncloud owncloud |
||
owncloud owncloud 3.0.1 |
||
owncloud owncloud 3.0.0 |