CVE-2020-8120

CVE-2020-8120

Vendor N/A

Product Nextcloud Server

Weakness CWE-79 · XSS

Published February 4, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A reflected Cross-Site Scripting vulnerability in Nextcloud Server 16.0.1 was discovered in the svg generation.

Key dates

02Disclosure timeline

February 4, 2020 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-8120 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2022-26101 CVE-2022-2729 Cross-site Scripting (XSS) - DOM in openemr/openemr CVE-2021-38352 Feedify – Web Push Notifications <= 2.1.8 Reflected Cross-Site Scripting CVE-2025-2061 code-projects Online Ticket Reservation System passenger.php cross site scripting CVE-2025-61644 i18n XSS through Special:Watchlist