mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
660 B
660 B
CVE-2019-15618
%20-%20Reflected%20(CWE-79)&color=brighgreen)
Description
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
POC
Reference
Github
No PoCs found on GitHub currently.