CVE-2014-9048 Information

Description

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.

Reference

https://owncloud.org/security/advisory/?id=oc-sa-2014-024