Description
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 6.0.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://owncloud.org/about/security/advisories/oC-SA-2014-007/
Scores
EPSS
0.0032
EPSS Percentile
54.9%
Details
CWE
CWE-79
Status
published
Products (50)
owncloud/owncloud
< 6.0.1
owncloud/owncloud_server
3.0.0
owncloud/owncloud_server
3.0.1
owncloud/owncloud_server
3.0.2
owncloud/owncloud_server
3.0.3
owncloud/owncloud_server
4.0.0
owncloud/owncloud_server
4.0.1
owncloud/owncloud_server
4.0.2
owncloud/owncloud_server
4.0.3
owncloud/owncloud_server
4.0.4
... and 40 more
Published
Mar 24, 2014
Tracked Since
Feb 18, 2026