Description

Cross-site scripting (XSS) vulnerability in the Documents component in ownCloud Server 6.0.x before 6.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to the print_unescaped function.

Remediation

References

CVE-2014-3832

Related Vulnerabilities

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43708)

WebLogic Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2018-10237)

ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8793)

Claroline Other Vulnerability (CVE-2006-5256)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.1)

Severity

Medium

Classification

CVE-2014-3832 CWE-707

Tags

Missing Update Known Vulnerabilities