CVE-2016-5876

Name of the Vulnerable Software and Affected Versions ownCloud server versions prior to 8.2.6 ownCloud server versions 9.x prior to 9.0.3

Description The issue allows remote attackers to download arbitrary images via a direct request when the gallery app is enabled.

Recommendations For ownCloud server versions prior to 8.2.6, update to version 8.2.6 or later. For ownCloud server versions 9.x prior to 9.0.3, update to version 9.0.3 or later.