2 matches found
CVE-2014-3837
The document application in ownCloud Server before 6.0.3 uses sequential values for the fileid, which allows remote authenticated users to enumerate shared files via unspecified vectors...
CVE-2014-3837
Affected software: ownCloud Server prior to 6.0.3. Vulnerability: the file_id in the documents app is auto-incremented, enabling remote authenticated users to enumerate shared files. Root cause: sequential file_id values used instead of a random access token. Impact: authenticated users could enu...