Security Advisory

CVE-2020-28644

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-09 18:18:35

Last updated 2024-08-04 16:40:59

Assigner mitre

State PUBLISHED

Description

The CSRF (Cross Site Request Forgery) token check was improperly implemented on cookie authenticated requests against some ocs API endpoints. This affects ownCloud/core version < 10.6.

← Browse all CVEs View on cve.org ↗