6.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.4%
ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.
www.securityfocus.com/bid/99321
hackerone.com/reports/215410
owncloud.org/security/advisory/?id=oc-sa-2017-004