Description
Cross-site scripting (XSS) vulnerability in files/ajax/download.php in ownCloud before 3.0.3 allows remote attackers to inject arbitrary web script or HTML via the files parameter, a different vulnerability than CVE-2012-2269.4.
Remediation
References
Related Vulnerabilities
WordPress Plugin JSON API User Privilege Escalation (3.9.3)
SharePoint CVE-2021-28478 Vulnerability (CVE-2021-28478)
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.5.1)
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6422)
Jboss EAP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1041)