5 matches found
[SECURITY] [DSA 3373-1] owncloud security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq...
CVE-2015-5953
The CVE-2015-5953 issue is an XSS vulnerability in the ownCloud Server activity module, exploitable by an authenticated remote user via a double-quote character in a filename in a shared folder. Affected are ownCloud Server versions prior to 7.0.5 and 8.0.x prior to 8.0.4. The problem is describe...
[SECURITY] [DSA 3373-1] owncloud security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3373-1] owncloud security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...
Stored XSS in "activity" application - ownCloud
Due to not sanitising all user provided input, the "activity" application shipped with the mentioned ownCloud versions is vulnerable to stored cross-site scripting attacks. The "activity" application is enabled by default in the ownCloud Community Edition and Enterprise Edition. Successful...