This issue occurs at sending a password reset E-Mail, where a difference in error messages could allow an attacker to determine if the username is valid or not
For more information please consult the official advisory.
This advisory is licensed CC BY-SA 4.0
CPE | Name | Operator | Version |
---|---|---|---|
owncloud server | lt | 9.0.7 | |
owncloud server | lt | 8.2.9 | |
owncloud server | lt | 9.1.3 | |
owncloud server | lt | 8.1.11 |