CVE-2014-9049 Information

Description

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote authenticated users to obtain all valid session IDs via an unspecified API method.

Reference

https://owncloud.org/security/advisory/?id=oc-sa-2014-025