Description
Cross-site scripting (XSS) vulnerability in the activity application in ownCloud Server before 7.0.5 and 8.0.x before 8.0.4 allows remote authenticated users to inject arbitrary web script or HTML via a " (double quote) character in a filename in a shared folder.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-2814 Vulnerability (CVE-2020-2814)
Oracle Application Server Other Vulnerability (CVE-2007-2123)
Jenkins DEPRECATED: Code Vulnerability (CVE-2016-3721)
Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-8492)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4303)