user_oidc is an OpenID Connect user backend for Nextcloud. V < 1.2.1 allows stored cross site scripting attac
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
Cvelist | CVE-2022-39338 Stored cross site scripting (XSS) vulnerability via Authorization Endpoint in user_oidc | 25 Nov 202200:00 | – | cvelist |
Nextcloud | Stored XSS via Authorization Endpoint - Safari-Only | 25 Nov 202211:28 | – | nextcloud |
OSV | CVE-2022-39338 | 25 Nov 202219:15 | – | osv |
Prion | Cross site scripting | 25 Nov 202219:15 | – | prion |
Hacker One | Nextcloud: [user_oidc] Stored XSS via Authorization Endpoint - Safari-Only | 31 Aug 202213:13 | – | hackerone |
NVD | CVE-2022-39338 | 25 Nov 202219:15 | – | nvd |
[
{
"vendor": "nextcloud",
"product": "security-advisories",
"versions": [
{
"version": "< 1.2.1",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo