Description
An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (aka Blind SSRF) or conduct a Denial Of Service attack.
Remediation
References
Related Vulnerabilities
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)
WordPress Plugin SearchAutocomplete 'tags.php' SQL Injection (1.0.8)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11586)
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2009-1386)
Django Improper Input Validation Vulnerability (CVE-2011-4138)