Due to not properly checking the ownership of an calendar, an authenticated attacker is able to download calendars of other users via the “calid” GET parameter to export.php in /apps/calendar/
The vulnerable component has been fixed.
The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:
CPE | Name | Operator | Version |
---|---|---|---|
owncloud server | lt | 7.0.8 | |
owncloud server | lt | 8.0.6 | |
owncloud server | lt | 8.1.1 |