Description
Cross-site request forgery (CSRF) vulnerability in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to hijack the authentication of users for requests that reset passwords via a crafted HTTP Host header.
Remediation
References
Related Vulnerabilities
Dolibarr Incorrect Authorization Vulnerability (CVE-2021-25954)
WordPress Plugin wp-mpdf Cross-Site Request Forgery (3.5.1)
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25978)
MySQL CVE-2018-3284 Vulnerability (CVE-2018-3284)
WordPress Plugin Advertizer 'id' Parameter SQL Injection (1.0)