CVE-2020-28644
EUVD-2020-2104209.02.2021, 19:15
The CSRF (Cross Site Request Forgery) token check was improperly implemented on cookie authenticated requests against some ocs API endpoints. This affects ownCloud/core version < 10.6.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| owncloud | owncloud | 𝑥 < 10.6.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration