Lucene search

K
owncloudOwnCloudOC-SA-2012-014
HistoryJul 10, 2012 - 11:42 a.m.

Server: CSRF in appconfig.php

2012-07-1011:42:22
owncloud.org
22

0.001 Low

EPSS

Percentile

47.5%

Cross-site request forgery (CSRF) vulnerability in core/ajax/appconfig.php in ownCloud before 4.0.7 allows remote attackers to hijack the authentication of administrators for requests that edit the app configurations.


For more information please consult the official advisory.

This advisory is licensed CC BY-SA 4.0

CPENameOperatorVersion
owncloud serverlt4.0.7

0.001 Low

EPSS

Percentile

47.5%