Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-21824
HistoryMar 10, 2022 - 12:00 a.m.

Nextcloud Talk Input Validation Error Vulnerability

2022-03-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
nextcloud
vulnerability
input validation
redirection
self-hosted
communication service
phishing

EPSS

0.001

Percentile

42.0%

JSON

Nextcloud Talk, a self-hosted local audio/video and chat communication service from Nextcloud Germany, is vulnerable to a user redirection vulnerability in versions prior to 12.1.2. The vulnerability stems from the system’s failure to reasonably handle target jumps, which could be exploited to redirect users to malicious websites for phishing and other attacks. .

Related

nvd 1
hackerone 1
prion 1
nextcloud 1
cvelist 1
osv 1
cve 1
nvd
nvd
CVE-2021-41180
2022-03-08 18:15:07
hackerone
hackerone
Nextcloud: objectId in share location can be set to open arbitrary URL or Deeplinks
2021-09-11 18:08:30
prion
prion
Open redirect
2022-03-08 18:15:00
nextcloud
nextcloud
Geolocation preview links can be set to arbitrary links
2022-03-08 16:11:47
cvelist
cvelist
CVE-2021-41180 Geolocation preview links can be set to arbitrary links in nextcloud talk
2022-03-08 17:45:12
osv
osv
CVE-2021-41180
2022-03-08 18:15:07
cve
cve
CVE-2021-41180
2022-03-08 18:15:07

EPSS

0.001

Percentile

42.0%

JSON
Related for CNVD-2022-21824
nvd1hackerone1prion1nextcloud1cvelist1osv1cve1