CSRF token leakage
Platform: ownCloud Server
Risk level: Medium
- ownCloud Server < 5.0.6 (CVE-2013-2086)
It is recommended that all instances are upgraded to ownCloud Server 5.0.6.
The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:
- Lukas Reschke – ownCloud Inc. (firstname.lastname@example.org) – Vulnerability discovery and disclosure.