Inadequate escaping lead to XSS vulnerability in the search module in ownCloud Server prior to 8.2.12, 9.0.x prior to 9.0.10, 9.1.x prior to 9.1.6, and 10.0.x prior to 10.0.2. To be exploitable a user has to write or paste malicious content into the search dialogue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
owncloud owncloud |