Description

ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.

Remediation

References

CVE-2014-3963

Related Vulnerabilities

WordPress Plugin BuddyStream Multiple Cross-Site Scripting Vulnerabilities (2.6.2)

Zope Web Application Server Other Vulnerability (CVE-2010-3198)

WordPress 6.3.x Multiple Vulnerabilities (6.3 - 6.3.1)

MySQL CVE-2012-0119 Vulnerability (CVE-2012-0119)

MySQL CVE-2019-2481 Vulnerability (CVE-2019-2481)

Severity

Medium

Classification

CVE-2014-3963 CWE-264

Tags

Missing Update Known Vulnerabilities