Description

The autocomplete feature in the E-Mail share dialog in ownCloud Server before 8.1.11, 8.2.x before 8.2.9, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Remediation

References

CVE-2017-5866

Related Vulnerabilities

Oracle Database Server CVE-2011-0822 Vulnerability (CVE-2011-0822)

MySQL CVE-2015-2641 Vulnerability (CVE-2015-2641)

Spring Cloud Gateway Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression La Vulnerability (CVE-2022-22947)

Drupal Improper Removal of Sensitive Information Before Storage or Transfer Vulnerability (CVE-2022-31042)

Magento Cleartext Storage of Sensitive Information Vulnerability (CVE-2019-8118)

Severity

Medium

Classification

CVE-2017-5866 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities