Description ownCloud (Core) before 10.5 allows XSS in login page 'forgot password.' Remediation References CVE-2020-16255 Related Vulnerabilities WordPress Plugin Playbuzz Cross-Site Scripting (0.8.1) Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-4360) WordPress Plugin GTM4WP Cross-Site Scripting (1.15.1) MySQL CVE-2018-3185 Vulnerability (CVE-2018-3185) TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3674) Severity Medium Classification CVE-2020-16255 Tags Missing Update Known Vulnerabilities