Vulnerabilities > Owncloud > Owncloud Server > 4.0.0

DATE CVE VULNERABILITY TITLE RISK
2019-12-17 CVE-2013-0202 Cross-site Scripting vulnerability in Owncloud Server
Cross-site scripting (XSS) vulnerability in ownCloud 4.5.5, 4.0.10, and earlier allows remote attackers to inject arbitrary web script or HTML via the action parameter to core/ajax/sharing.php.
network
low complexity
owncloud CWE-79
6.1