Cross-site request forgery (CSRF) vulnerability in ownCloud Server prior to 5.0.15 and 6.0.x prior to 6.0.2 allows remote malicious users to hijack the authentication of users for requests that reset passwords via a crafted HTTP Host header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
owncloud owncloud |