Описание
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
EPSS
Процентиль: 42%
0.00196
Низкий
CVE ID
Связанные уязвимости
CVSS3: 4.8
nvd
больше 5 лет назад
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
CVSS3: 4.8
debian
больше 5 лет назад
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...
EPSS
Процентиль: 42%
0.00196
Низкий