ownCloud Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2014-3836 - Vulnerability Database

ownCloud Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2014-3836

Medium

Reference: CVE-2014-3836

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3836

Title: ownCloud Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks (2) modify files or (3) rename files via unspecified vectors.