What the vulnerability does

01Description

Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components.

Key dates

02Disclosure timeline

May 8, 2017 CVE published
August 5, 2024 Record updated

Related vulnerabilities

04Related CVE