First published: Wed Feb 04 2015(Updated: )
The import functionality in the bookmarks application in ownCloud server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 does not validate CSRF tokens, which allow remote attackers to conduct CSRF attacks.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
ownCloud ownCloud | <=5.0.17 | |
ownCloud ownCloud | =5.0.0 | |
ownCloud ownCloud | =5.0.1 | |
ownCloud ownCloud | =5.0.2 | |
ownCloud ownCloud | =5.0.3 | |
ownCloud ownCloud | =5.0.4 | |
ownCloud ownCloud | =5.0.5 | |
ownCloud ownCloud | =5.0.6 | |
ownCloud ownCloud | =5.0.7 | |
ownCloud ownCloud | =5.0.8 | |
ownCloud ownCloud | =5.0.9 | |
ownCloud ownCloud | =5.0.10 | |
ownCloud ownCloud | =5.0.11 | |
ownCloud ownCloud | =5.0.12 | |
ownCloud ownCloud | =5.0.13 | |
ownCloud ownCloud | =5.0.14 | |
ownCloud ownCloud | =5.0.14-a | |
ownCloud ownCloud | =5.0.15 | |
ownCloud ownCloud | =5.0.16 | |
ownCloud ownCloud | =6.0.0 | |
ownCloud ownCloud | =6.0.1 | |
ownCloud ownCloud | =6.0.2 | |
ownCloud ownCloud | =6.0.3 | |
ownCloud ownCloud | =6.0.4 | |
ownCloud ownCloud | =6.0.5 | |
ownCloud ownCloud | =7.0.0 | |
ownCloud ownCloud | =7.0.1 | |
ownCloud ownCloud | =7.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.