Description
Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled cookie.
Remediation
References
Related Vulnerabilities
WordPress Plugin IMPress Listings Cross-Site Scripting (2.0.1)
LimeSurvey CVE-2019-16180 Vulnerability (CVE-2019-16180)
WordPress Plugin Gallery by BestWebSoft 'php.php' Arbitrary File Upload (3.06)
Jenkins Other Vulnerability (CVE-2022-2048)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3412)