Description ownCloud (Core) before 10.5 allows XSS in login page 'forgot password.' Remediation References CVE-2020-16255 Related Vulnerabilities MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756) Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8131) Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5573) WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90) WordPress Plugin wpForo Forum Multiple Vulnerabilities (2.1.7) Severity Medium Classification CVE-2020-16255 Tags Missing Update Known Vulnerabilities