Nextcloud: Content spoofing due to the improper behavior of the 403 page in Private Server

ID H1:177335
Type hackerone
Reporter ahsan
Modified 2016-10-31T08:34:48


@ahsantahir reported a content spoofing vulnerability on an internal server. We've fixed this by adjusting the Apache configuration.

On request of the reporter this is disclosed limitedly.