{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T13:48:05.628","vulnerabilities":[{"cve":{"id":"CVE-2013-0307","sourceIdentifier":"secalert@redhat.com","published":"2014-03-14T15:55:05.433","lastModified":"2025-04-12T10:46:40.837","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in settings.php in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allows remote administrators to inject arbitrary web script or HTML via the group input field parameter."},{"lang":"es","value":"Vulnerabilidad de XSS en settings.php en ownCloud anterior a 4.0.12 y 4.5.x anterior a 4.5.7 permite a administradores remotos inyectar script Web o HTML arbitrarios a través del parámetro del campo de entrada group."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.11","matchCriteriaId":"5861C327-743A-41DF-8326-1696620194D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"77DE37D0-74E5-4D66-8A2D-DA177936A4F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DB0E5BB3-900E-4D95-B302-4120567B6155"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"E1BB82C7-11E5-44E4-9029-76AE1F4AE937"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:3.0.3:*:*:*:*:*:*:*","matchCriteriaId":"40348D52-10C6-4436-84DC-4B63271AF180"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D77D4260-0D48-47EE-A09B-FC200CB36A38"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.1:*:*:*:*:*:*:*","matchCriteriaId":"78FEEBC0-9483-4EBE-B6E4-5390144A36F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.2:*:*:*:*:*:*:*","matchCriteriaId":"7DED1F21-0941-4E3C-BA04-15D1C3B685C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.3:*:*:*:*:*:*:*","matchCriteriaId":"3A7951FE-9C41-4CCF-933F-56204147148B"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.4:*:*:*:*:*:*:*","matchCriteriaId":"8F36384F-ECB2-48F5-AB32-85AB643CD816"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.5:*:*:*:*:*:*:*","matchCriteriaId":"7DA03000-6D01-4CDA-8C83-C2AFC649B869"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.6:*:*:*:*:*:*:*","matchCriteriaId":"8206EE35-2939-44B4-BBCF-C384C6206122"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.7:*:*:*:*:*:*:*","matchCriteriaId":"E7E07400-C700-454C-B5EF-4992F2089BE1"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.8:*:*:*:*:*:*:*","matchCriteriaId":"D068E80A-1504-4814-88BF-7A183F5A7CD5"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.9:*:*:*:*:*:*:*","matchCriteriaId":"3ACF1A42-0F83-4771-B097-CF497439C4D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.0.10:*:*:*:*:*:*:*","matchCriteriaId":"CF99DF50-3984-4F56-B2C8-4FA387627490"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.0:*:*:*:*:*:*:*","matchCriteriaId":"56D46962-C2C4-4468-9DB0-15AFF4FE8032"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.1:*:*:*:*:*:*:*","matchCriteriaId":"E8577131-CCE2-4B98-8763-8F99E267BD5B"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.2:*:*:*:*:*:*:*","matchCriteriaId":"79A6F6FF-7E31-4337-93E0-ED05D3D698D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.3:*:*:*:*:*:*:*","matchCriteriaId":"C21E9F9A-5734-4819-8845-E82ADC29ABD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.4:*:*:*:*:*:*:*","matchCriteriaId":"D57EBB84-E1B2-44F4-BD7B-8D4A79A2E2D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.5:*:*:*:*:*:*:*","matchCriteriaId":"2E90708D-CA85-4034-ADA7-72522812CEF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:owncloud:owncloud_server:4.5.6:*:*:*:*:*:*:*","matchCriteriaId":"FA2C4F18-4056-4ED3-B1E7-C945849FE97C"}]}]}],"references":[{"url":"http://owncloud.org/about/security/advisories/oC-SA-2013-003/","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://owncloud.org/about/security/advisories/oC-SA-2013-003/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}