VYPR
Unrated severityNVD Advisory· Published Feb 4, 2020· Updated Aug 5, 2024

CVE-2019-15618

CVE-2019-15618

Description

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nextcloud/Nextcloudllm-fuzzy2 versions
    = 15.0.5+ 1 more
    • (no CPE)range: = 15.0.5
    • (no CPE)range: 15.0.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.