Lucene search
HistoryMay 08, 2015 - 2:59 p.m.
CVE-2015-3012
cve
2015
3012
cross-site scripting
xss
vulnerabilities
webodf
owncloud
remote attackers
html
script
nvd
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.6%
Multiple cross-site scripting (XSS) vulnerabilities in WebODF before 0.5.5, as used in ownCloud, allow remote attackers to inject arbitrary web script or HTML via a (1) style or (2) font name or (3) javascript or (4) data URI.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian:debian_linux | debian debian linux | eq | 7.0 |
| kogmbh:webodf | kogmbh webodf | le | 0.5.4 |
Related
cvelist
cvelist
CVE-2015-3012
2015-05-08 14:00:00
prion
prion
Cross site scripting
2015-05-08 14:59:00
ubuntucve
ubuntucve
CVE-2015-3012
2015-05-08 00:00:00
owncloud
owncloud
Server: Multiple stored XSS in "documents" application
2015-03-25 14:49:09
Multiple stored XSS in "documents" application - ownCloud
2015-03-25 18:43:17
openvas
openvas
Debian Security Advisory DSA 3244-1 (owncloud - security update)
2015-05-02 00:00:00
Debian: Security Advisory (DSA-3244-1)
2015-05-01 00:00:00
debian
debian
[SECURITY] [DSA 3244-1] owncloud security update
2015-05-02 11:15:52
[SECURITY] [DSA 3244-1] owncloud security update
2015-05-02 11:15:35
securityvulns
securityvulns
[SECURITY] [DSA 3244-1] owncloud security update
2015-05-05 00:00:00
owncloud multiple security vulnerabilities
2015-05-05 00:00:00
osv
osv
owncloud - security update
2015-05-02 00:00:00
nessus
nessus
Debian DSA-3244-1 : owncloud - security update
2015-05-04 00:00:00
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.6%
Related for CVE-2015-3012