Lucene search
Ahsan KhanNC-SA-2017-007HistoryMay 08, 2017 - 12:00 a.m.
DOM XSS vulnerability in search dialogue (NC-SA-2017-007)
2017-05-0800:00:00
Ahsan Khan
nextcloud.com
10
EPSS
0.001
Percentile
21.7%
Inadequate escaping lead to XSS vulnerability in the search module. To be exploitable an user has to write or paste malicious content into the search dialogue.
Related
cvelist
cvelist
CVE-2017-0890
2017-05-08 20:00:00
osv
osv
CVE-2017-0890
2017-05-08 20:29:00
cve
cve
CVE-2017-0890
2017-05-08 20:29:00
hackerone
hackerone
Nextcloud: DOM XSS vulnerability in search dialogue (NC-SA-2017-007)
2017-03-13 21:23:55
prion
prion
Cross site scripting
2017-05-08 20:29:00
nvd
nvd
CVE-2017-0890
2017-05-08 20:29:00
openvas
openvas
Nextcloud Multiple Vulnerabilities-01 (May 2017) - Linux
2017-05-30 00:00:00