Description
ownCloud Server before 7.0.8, 8.0.x before 8.0.6, and 8.1.x before 8.1.1 does not properly check ownership of calendars, which allows remote authenticated users to read arbitrary calendars via the calid parameter to apps/calendar/export.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin WooCommerce BuddyPress Integration Unspecified Vulnerability (3.2.6.1)
MySQL CVE-2023-22015 Vulnerability (CVE-2023-22015)
WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress CSV Injection (1.6.3)
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2023-0307)
Oracle Database Server CVE-2010-2411 Vulnerability (CVE-2010-2411)