Description
Cross-site request forgery (CSRF) vulnerability in ownCloud before 3.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site scripting (XSS) sequences via vectors involving contacts.
Remediation
References
Related Vulnerabilities
WordPress Plugin ThinkTwit Security Bypass (1.5.1)
WordPress Plugin WP SMS Cross-Site Scripting (5.4.12)
WordPress Plugin Simple add pages or posts Cross-Site Request Forgery (1.6)
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4729)
WordPress Plugin Push Notifications for WordPress (Lite) Cross-Site Request Forgery (6.0)