CVE-2014-3836
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks, (2) modify files, or (3) rename files via unspecified vectors.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0012 (0.1%)
Percentile: 30.1%
EPSS: 2026-05-06
Affects
owncloud:owncloudowncloud:owncloud_serverTechnical description
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks, (2) modify files, or (3) rename files via unspecified vectors.
Published: 6/4/2014, 2:55:04 PM
Last modified: 5/6/2026, 10:30:45 PM