Описание
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
EPSS
Процентиль: 54%
0.0031
Низкий
CVE ID
Связанные уязвимости
CVSS3: 4.8
nvd
больше 5 лет назад
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
CVSS3: 4.8
debian
больше 5 лет назад
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...
EPSS
Процентиль: 54%
0.0031
Низкий