Vulnerabilities

CVE-2016-7419

by Fred · 17/09/2016

Cross-site scripting (XSS) vulnerability in share.js in the gallery application in ownCloud Server before 9.0.4 and Nextcloud Server before 9.0.52 allows remote authenticated users to inject arbitrary web script or HTML via a crafted directory name.

Date published : 2016-09-17

http://www.securityfocus.com/bid/92373

https://github.com/nextcloud/gallery/commit/6933d27afe518967bd1b60e6a7eacd88288929fc

Similar

Tags: Cybersecurity Alert