Description
Cross-site scripting (XSS) vulnerability in bookmarks/js/bookmarks.js in ownCloud 4.0.x before 4.0.10 and 4.5.x before 4.5.5 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to apps/bookmark/index.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP ULike Multiple Vulnerabilities (3.1)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8669)
PHP Out-of-bounds Read Vulnerability (CVE-2017-12933)
WordPress Plugin eCommerce Product Catalog for WordPress Cross-Site Request Forgery (3.0.17)
WordPress Plugin Keep Backup Daily Unspecified Vulnerability (2.0.3)