Description
index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote attackers to bypass authentication via a crafted oc_token cookie value.
Remediation
References
Related Vulnerabilities
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-23969)
WordPress Plugin Revive Old Post-Auto Post to Social Media 'cat' Parameter SQL Injection (3.2.5)
WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.29)
WordPress Plugin BSK PDF Manager Multiple SQL Injection Vulnerabilities (1.3.2)