Description
ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin MyBB Cross-Poster Cross-Site Scripting (1.0)
WordPress Plugin ThirstyAffiliates Affiliate Link Manager Cross-Site Scripting (3.9.2)
MySQL CVE-2020-2904 Vulnerability (CVE-2020-2904)
WordPress Plugin Time Sheets Multiple Cross-Site Scripting Vulnerabilities (1.5.1)
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2020-11067)