CVE-2014-3836 Information

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud Server before 6.0.3 allow remote attackers to hijack the authentication of users for requests that (1) conduct cross-site scripting (XSS) attacks (2) modify files or (3) rename files via unspecified vectors.

Reference

http://owncloud.org/about/security/advisories/oc-sa-2014-014/