CVE-2012-4391
Publication date 5 September 2012
Last updated 24 July 2024
Ubuntu priority
Description
Cross-site request forgery (CSRF) vulnerability in core/ajax/appconfig.php in ownCloud before 4.0.7 allows remote attackers to hijack the authentication of administrators for requests that edit the app configurations.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| owncloud | ||
| 14.04 LTS trusty | Not in release | |