< go back to overview

CSRF in “bookmarks” application

Platform: ownCloud Server

Versions: 5.0.18, 6.0.6, 7.0.3,

Date: 11/25/2014

Risk level: Low

Description

Due to not verifying the CSRF token on the import functionality of the “bookmarks” application, it was vulnerable against CSRF attacks.
The “bookmarks” application is disabled by default.

An unauthenticated attacker could have used this to import bookmarks into the “bookmarks” application if the victim visits a specially crafted website and is logged-in into the ownCloud instance at the same time.
Furthermore, an unauthenticated attacker could leverage this vulnerability with oC-SA-2014-028 resulting in a potential Cross-site scripting vulnerability.

Affected Software

  • ownCloud Server < 7.0.3 (CVE-2014-9041)
  • ownCloud Server < 6.0.6 (CVE-2014-9041)
  • ownCloud Server < 5.0.18 (CVE-2014-9041)

Action Taken

The import functionality is now verifying the CSRF token.

Acknowledgements

The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:

  • Alain Homewood – PwC New Zealand – Vulnerability discovery and disclosure.

Share this

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close