Inadequate Escaping of Error Messages Leading to XSS Vulnerabilities in Nextcloud Server

Inadequate Escaping of Error Messages Leading to XSS Vulnerabilities in Nextcloud Server

CVE-2017-0891 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components.

Learn more about our Cis Benchmark Audit For Server Software.