Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2014-9041 - Vulnerability Database
ownCloud

ownCloud Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2014-9041

Medium
Reference: CVE-2014-9041
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-9041
Title: ownCloud Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

The import functionality in the bookmarks application in ownCloud server before 5.0.18 6.x before 6.0.6 and 7.x before 7.0.3 does not validate CSRF tokens which allow remote attackers to conduct CSRF attacks.