Description

(1) apps/calendar/appinfo/remote.php and (2) apps/contacts/appinfo/remote.php in ownCloud before 4.0.7 allows remote authenticated users to enumerate the registered users via unspecified vectors.

Remediation

References

CVE-2012-4390

Related Vulnerabilities

MySQL CVE-2021-2178 Vulnerability (CVE-2021-2178)

WordPress Plugin Slider Hero with Animation, Video Background Cross-Site Request Forgery (8.2.0)

WordPress Plugin Cherry Cross-Site Scripting (1.2.8.1)

WordPress Plugin Time Sheets Cross-Site Scripting (1.4.2)

IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-9707)

Severity

Medium

Classification

CVE-2012-4390 CWE-200

Tags

Missing Update Known Vulnerabilities