Computer Security
[EN] securityvulns.ru no-pyccku


CVECVE-2015-5953
StatusCandidate
DescriptionCross-site scripting (XSS) vulnerability in the activity application in ownCloud Server before 7.0.5 and 8.0.x before 8.0.4 allows remote authenticated users to inject arbitrary web script or HTML via a " (double quote) character in a filename in a shared folder.
PhaseAssigned (06.08.2015)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5953
ReferencesCONFIRM : https://owncloud.org/security/advisory/?id=oc-sa-2...
SecurityVulns:owncloud multiple security vulnerabilities
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod