Description
The login page (aka index.php) in ownCloud before 5.0.6 does not disable the autocomplete setting for the password parameter, which makes it easier for physically proximate attackers to guess the password.
Remediation
References
Related Vulnerabilities
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.30)
WordPress Plugin The Events Calendar Cross-Site Scripting (4.8.1)
WordPress Plugin All-in-One WP Migration Information Disclosure (7.0)
WordPress Plugin PictoBrowser Cross-Site Request Forgery (0.3.1)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0046)