Description
(1) apps/calendar/appinfo/remote.php and (2) apps/contacts/appinfo/remote.php in ownCloud before 4.0.7 allows remote authenticated users to enumerate the registered users via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Duplicate Post Multiple Vulnerabilities (2.5)
Joomla! Core Security Bypass (2.5.0 - 3.9.15)
WordPress Plugin WooCommerce Product Table Lite Cross-Site Scripting (2.3.0)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.31)
WordPress Plugin Poll, Survey, Form & Quiz Maker by OpinionStage Unspecified Vulnerability (15.0.0)