CVE-2017-9338 (retired)

Inadequate escaping lead to XSS vulnerability in the search module in
ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and
10.0.x before 10.0.2. To be exploitable a user has to write or paste
malicious content into the search dialogue.
Upstream:released (10.0.2, 9.1.6, 9.0.10, 8.2.12)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
More Information

Updated: 2019-09-19 16:04:59 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)