Description

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.

Remediation

References

CVE-2014-9048

Related Vulnerabilities

WordPress Plugin CallRail Phone Call Tracking Cross-Site Request Forgery (0.4.9)

Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068)

Oracle Database Server CVE-2020-2969 Vulnerability (CVE-2020-2969)

MySQL CVE-2014-0401 Vulnerability (CVE-2014-0401)

WordPress Plugin WordPress Content Slide Multiple Vulnerabilities (1.4.2)

Severity

Medium

Classification

CVE-2014-9048 CWE-264

Tags

Missing Update Known Vulnerabilities