Multiple cross-site scripting (XSS) vulnerabilities in the contacts application in ownCloud Server Community Edition prior to 5.0.19, 6.x prior to 6.0.7, and 7.x prior to 7.0.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted contact.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
owncloud owncloud |
||
debian debian linux 7.0 |