CNNVD-202511-387 Information
Nov 05, 2025
cve
CNNVD ID
CNNVD-202511-387
Related CVE
- CNNVD Published: 2025-11-05
Description (Chinese)
guests是ownCloud开源的一个文件共享程序。 guests 0.12.5之前版本存在安全漏洞,该漏洞源于showPasswordForm中对令牌验证不足,可能导致未经验证的用户枚举。
Description (English)
Guests is a file-sharing program for the homeClaud open source. There was a security loophole in the pre-guests 0.12.5 version, which stemmed from the inadequate authentication of tokens in the showPasswordForm, which could lead to uncertified user counts.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
ownCloud
Published
2025-11-05
Last Modified
2026-02-24
References
https://gist.github.com/thesmartshadow/64ae0449e909174d0479a4f23657147f https://github.com/owncloud/guests https://marketplace.owncloud.com/apps/guests https://yeswehack.com/reports/411806
Share on: