ownCloud: apps.owncloud.com: CSRF change privacy settings

Hello owncloud security team , I am a researcher of security, wanted to reveal a security vulnerability responsibility CSRF , which is found in the website of your website apps.owncloud.com. this bug allow to me to change privacy settings . POC : https://www.youtube.com/watch?v=jDllgJ2wWOA...

ownCloud: CSRF in apps.owncloud.com

Hello owncloud security team , I am a researcher of security, wanted to reveal a security vulnerability responsibility CSRF , which is found in the website of your website apps.owncloud.com. this bug allow to hackers takeover of user accounts POC : https://www.youtube.com/watch?v=6YnjPoiutfA For...

ownCloud: apps.owncloud.com: Malicious file upload leads to remote code execution

Hello ownCloud Security Team, i am here to report a critical security vulnerability . Proof of concept : https://apps.owncloud.com/CONTENT/content-pre1/171172-1.php5 code source of uploaded file :...

ownCloud: apps.owncloud.com: XSS via referrer

Look at next request: Host: apps.owncloud.com User-Agent: Mozilla/5.0 Windows NT 6.3; WOW64; rv:40.0 Gecko/20100101 Firefox/40.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3 Accept-Encoding: gzip, deflate Referer:...