CVE-2017-0891

Publication date

2017-05-08 20:00:00

Family

hackerone

State

PUBLISHED

Description

Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components.