Description
The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote authenticated users to obtain all valid session IDs via an unspecified API method.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2016-5488 Vulnerability (CVE-2016-5488)
WordPress Plugin WP Design Maps & Places Cross-Site Scripting (1.2)
PHP Deserialization of Untrusted Data Vulnerability (CVE-2018-19396)
Oracle Database Server CVE-2014-6546 Vulnerability (CVE-2014-6546)
SugarCRM Improper Input Validation Vulnerability (CVE-2012-0694)