The Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless. This could be abused to spoof the URL in password-reset e-mail messages.
CPE | Name | Operator | Version |
---|---|---|---|
core | eq | 10.0.3beta2 | |
core | eq | 10.0.0RC5 | |
core | eq | 10.11.0-rc.2 | |
core | eq | 10.0.5 | |
core | eq | 4.5.0beta2 | |
core | eq | 8.0.0beta1 | |
core | eq | 10.7.0RC2 | |
core | eq | 4.0.6 | |
core | eq | 2.0beta3 | |
core | eq | 10.10.0 |