Description

Cross-site scripting (XSS) vulnerability in the Documents component in ownCloud Server 6.0.x before 6.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to the print_unescaped function.

Remediation

References

CVE-2014-3832

Related Vulnerabilities

MySQL CVE-2022-21304 Vulnerability (CVE-2022-21304)

PHP CVE-2013-7345 Vulnerability (CVE-2013-7345)

WordPress Plugin Contact Form 7 Database Addon-CFDB7 CSV Injection (1.2.5.5)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-0997)

Sqlite Improper Initialization Vulnerability (CVE-2020-11655)

Severity

Medium

Classification

CVE-2014-3832 CWE-707

Tags

Missing Update Known Vulnerabilities