ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5876)
Description
ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery app is enabled, allows remote attackers to download arbitrary images via a direct request.