An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.
Published February 19, 2021.
Owncloud Owncloud
