First published: Mon Jul 17 2017(Updated: )
ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
ownCloud ownCloud | <=8.2.11 | |
ownCloud ownCloud | >=9.0.0<=9.0.9 | |
ownCloud ownCloud | >9.1.0<=9.1.5 | |
ownCloud ownCloud | >=10.0.0<10.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.