{"uuid": "43aab0b9-37b4-41ac-a1fc-a9613a4589bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49104", "type": "seen", "source": "https://t.me/arpsyndicate/814", "content": "#ExploitObserverAlert\n\nCVE-2023-49104\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-49104. An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled. An attacker is able to pass in a crafted redirect-url that bypasses validation, and consequently allows an attacker to redirect callbacks to a Top Level Domain controlled by the attacker.\n\nFIRST-EPSS: 0.000430000", "creation_timestamp": "2023-11-30T09:52:30.000000Z"}