Description
Multiple cross-site scripting (XSS) vulnerabilities in js/viewer.js in ownCloud before 4.5.12 and 5.x before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to shared files.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-1999-0238)
Apache Tomcat Other Vulnerability (CVE-2002-2008)
MySQL CVE-2017-10283 Vulnerability (CVE-2017-10283)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-11201)
WordPress 2.6.2 Remote Code Execution Vulnerability (0.70 - 2.6.2)