Description
An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.
Remediation
References
Related Vulnerabilities
WordPress Plugin BetterLinks-Shorten, Track and Manage any URL Cross-Site Scripting (1.2.5)
WordPress Plugin Complianz-GDPR/CCPA Cookie Consent Cross-Site Scripting (6.4.1)
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.2.0.727)
Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25609)
Oracle HTTP Server CVE-2014-0098 Vulnerability (CVE-2014-0098)