Description
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) new_name parameter to apps/bookmarks/ajax/renameTag.php or (2) multiple unspecified parameters to unknown files in apps/contacts/ajax/.
Remediation
References
Related Vulnerabilities
WordPress Plugin Codestyling Localization 'name' Parameter Cross-Site Scripting (1.99.19)
Jenkins 7PK - Security Features Vulnerability (CVE-2014-9635)
WordPress Plugin Check & Log Email SQL Injection (1.0.2)
PHP Improper Input Validation Vulnerability (CVE-2007-6039)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41800)