CVE-2017-0890

Published: 2017-05-08T20:29Z

Last Modified: 2024-11-21T03:03Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt