Description

The autocomplete feature in the E-Mail share dialog in ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Remediation

References

CVE-2017-5866

Related Vulnerabilities

MySQL CVE-2022-21290 Vulnerability (CVE-2022-21290)

Magento Improper Input Validation Vulnerability (CVE-2019-7898)

Moodle Incorrect Authorization Vulnerability (CVE-2020-14321)

PHP Use of Externally-Controlled Format String Vulnerability (CVE-2015-8617)

WordPress Plugin Better Click To Tweet Unspecified Vulnerability (5.1)

Severity

Medium

Classification

CVE-2017-5866 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities