Description
Inadequate escaping lead to XSS vulnerability in the search module in ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2. To be exploitable a user has to write or paste malicious content into the search dialogue.
Remediation
References
Related Vulnerabilities
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2348)
WordPress Plugin Link Library Cross-Site Scripting (5.9.12.29)
WordPress Plugin Goolytics-Simple Google Analytics Cross-Site Scripting (1.1.1)
Joomla Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2023-23755)