Description

The configuration loader in ownCloud 5.0.x before 5.0.6 allows remote attackers to obtain CSRF tokens and other sensitive information by reading an unspecified JavaScript file.

Remediation

References

CVE-2013-2086

Related Vulnerabilities

WordPress Plugin Mail Control-Email Customizer, SMTP Deliverability, logging, open and click Tracking Cross-Site Scripting (0.3.1)

WordPress Plugin Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.12)

WordPress Plugin Divi Builder Cross-Site Scripting (2.17.2)

WordPress Plugin Frontend Uploader Cross-Site Scripting (1.3.2)

MySQL CVE-2018-2640 Vulnerability (CVE-2018-2640)

Severity

Medium

Classification

CVE-2013-2086 CWE-200

Tags

Missing Update Known Vulnerabilities