2021-03-03 17:39:15
hackerone
PUBLISHED
A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a users own credentials for other users external storage configuration when not already configured yet.