Description

Cross-site scripting (XSS) vulnerability in apps/user_webdavauth/settings.php in ownCloud 4.5.x before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via arbitrary POST parameters.

Remediation

References

CVE-2012-5608

Related Vulnerabilities

Joomla! Core 3.x.x Arbitrary File Upload (3.0.0 - 3.1.4)

Oracle JRE CVE-2012-5075 Vulnerability (CVE-2012-5075)

PHP Numeric Errors Vulnerability (CVE-2015-7804)

MySQL CVE-2018-2696 Vulnerability (CVE-2018-2696)

WordPress Plugin PICA Photo Gallery 'imgname' Parameter Information Disclosure (1.0)

Severity

Medium

Classification

CVE-2012-5608 CWE-707

Tags

Missing Update Known Vulnerabilities