Description
Cross-site request forgery (CSRF) vulnerability in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to hijack the authentication of users for requests that reset passwords via a crafted HTTP Host header.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2002-1745)
WordPress Plugin Live Chat with Facebook Messenger Cross-Site Scripting (1.4.4)
WordPress Plugin 3D Flick Slideshow 'upload.php' Arbitrary File Upload (2.1)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1133)
OpenSSL Missing Encryption of Sensitive Data Vulnerability (CVE-2019-1547)