Description
The import functionality in the bookmarks application in ownCloud server before 5.0.18, 6.x before 6.0.6, and 7.x before 7.0.3 does not validate CSRF tokens, which allow remote attackers to conduct CSRF attacks.
Remediation
References
Related Vulnerabilities
WordPress Plugin Social Like Box and Page by WpDevArt Cross-Site Scripting (0.8.40)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2020-26185)
WordPress Plugin Easy Registration Forms Unspecified Vulnerability (1.8.4)
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925)
PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5279)