CVE-2014-3836

2014-06-0414:00:00

mitre

www.cve.org

AI Score

6.5

Confidence

High

EPSS

0.002

Percentile

52.4%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks, (2) modify files, or (3) rename files via unspecified vectors.

References

owncloud.org/about/security/advisories/oc-sa-2014-014/