Description
Cross-site scripting (XSS) vulnerability in files/ajax/download.php in ownCloud before 3.0.3 allows remote attackers to inject arbitrary web script or HTML via the files parameter, a different vulnerability than CVE-2012-2269.4.
Remediation
References
Related Vulnerabilities
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4900)
WordPress Plugin Listing, Classified Ads & Business Directory-uListing Arbitrary File Upload (1.2.1)
WordPress Plugin BackWPup Unspecified Vulnerability (3.4.3)
WordPress Plugin Xorbin Analog Flash Clock Cross-Site Scripting (1.0)
Apache Traffic Server CVE-2015-5206 Vulnerability (CVE-2015-5206)