Security Advisory

CVE-2019-15618

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-04 19:08:57
Last updated 2024-08-05 00:56:22
Assigner hackerone
State PUBLISHED

Description

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.

← Browse all CVEs View on cve.org ↗