Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-28644

Disclosure Date: February 09, 2021 (last updated February 22, 2025)
The CSRF (Cross Site Request Forgery) token check was improperly implemented on cookie authenticated requests against some ocs API endpoints. This affects ownCloud/core version < 10.6.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0