Description
ownCloud Server before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allow remote authenticated users to obtain sensitive information from a directory listing and possibly cause a denial of service (CPU consumption) via the force parameter to index.php/apps/files/ajax/scan.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin NAB Transact Security Bypass (2.1.0)
WordPress Plugin JobSearch WP Job Board Cross-Site Scripting (1.5.5)
WordPress Plugin Easy Testimonial Manager SQL Injection (1.2.0)
WordPress 3.8.4 Multiple Vulnerabilities (3.8 - 3.8.4)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4360)