Lucene search
PRIOn knowledge basePRION:CVE-2019-15618HistoryFeb 04, 2020 - 8:15 p.m.
Cross site scripting
2020-02-0420:15:00
PRIOn knowledge base
www.prio-n.com
3
Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nextcloud_server | ge | 15.0.0 | |
| nextcloud_server | lt | 15.0.6 | |
| nextcloud_server | lt | 14.0.9 |
Related
nvd
nvd
CVE-2019-15618
2020-02-04 20:15:12
cve
cve
CVE-2019-15618
2020-02-04 20:15:12
nextcloud
nextcloud
Reflected XSS in redirect of the Updater (NC-SA-2020-007)
2019-03-26 00:00:00
osv
osv
CVE-2019-15618
2020-02-04 20:15:12
openvas
openvas
Nextcloud Server < 14.0.9, 15.x < 15.0.6 XSS Vulnerability (NC-SA-2020-007)
2020-02-05 00:00:00
cvelist
cvelist
CVE-2019-15618
2020-02-04 19:08:57
hackerone
hackerone
Nextcloud: [Reflected XSS] In Request URL
2019-03-26 10:13:25
redhatcve
redhatcve
CVE-2019-15618
2022-05-21 00:15:43