Description

(1) apps/calendar/appinfo/remote.php and (2) apps/contacts/appinfo/remote.php in ownCloud before 4.0.7 allows remote authenticated users to enumerate the registered users via unspecified vectors.

Remediation

References

CVE-2012-4390

Related Vulnerabilities

WordPress Plugin Daily Prayer Time Cross-Site Scripting (2023.03.20)

WordPress Plugin Custom Search by BestWebSoft Unspecified Vulnerability (1.21)

WordPress Plugin iubenda-All-in-one Compliance for GDPR/CCPA Cookie Consent + more Privilege Escalation (3.3.2)

TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2020-11067)

Joomla CVE-2017-7988 Vulnerability (CVE-2017-7988)

Severity

Medium

Classification

CVE-2012-4390 CWE-200

Tags

Missing Update Known Vulnerabilities