Description

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5.11, and 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2013-2040

Related Vulnerabilities

WordPress Plugin BuddyPress Multiple Vulnerabilities (5.1.2)

WordPress Plugin LearnPress-WordPress LMS Cross-Site Scripting (4.1.6.5)

PrestaShop CVE-2023-39529 Vulnerability (CVE-2023-39529)

OpenSSL Improper Access Control Vulnerability (CVE-2016-7054)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2986)

Severity

Low

Classification

CVE-2013-2040 CWE-707

Tags

Missing Update Known Vulnerabilities