CVE-2012-4394

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

Cross-site scripting (XSS) vulnerability in apps/files/js/filelist.js in ownCloud before 4.0.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter.

owncloud/core
owncloud/core
:cloud: ownCloud web server core (Files, DAV, etc.)
GitHubGitHub
8.79K