Synopsis
The remote Mandriva Linux host is missing a security update.
Description
Multiple vulnerabilities has been discovered and corrected in owncloud :
- Multiple stored XSS in contacts application (oC-SA-2015-001)
- Multiple stored XSS in documents application (oC-SA-2015-002)
- Bypass of file blacklist (oC-SA-2015-004)
The updated packages have been upgraded to the 7.0.5 version where these security flaws has been fixed.
Solution
Update the affected owncloud package.