Description
Cross-site request forgery (CSRF) vulnerability in ownCloud before 3.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site scripting (XSS) sequences via vectors involving contacts.
Remediation
References
Related Vulnerabilities
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5739)
WordPress Plugin External Links-nofollow, noopener & new window Cross-Site Scripting (2.55)
Oracle JRE CVE-2014-0448 Vulnerability (CVE-2014-0448)
WordPress Plugin Royal Gallery Cross-Site Scripting (2.3)
WordPress Plugin Twitter Feed:Embedded Timeline 'url' Parameter Cross-Site Scripting (0.3.1)