The default Flash Cross Domain policies in ownCloud before 5.0.15 and 6.x before 6.0.2 allows remote attackers to access user files via unspecified vectors.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Owncloud |
Owncloud |
6.0.0 |
6.0.0 |
Owncloud |
Owncloud |
6.0.1 |
6.0.1 |
References