CVE-2021-32782 Cross-Site Scripting in Nextcloud Circles

Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application is vulnerable to a stored Cross-Site Scripting XSS vulnerability. Due the strict Content-Security-Policy shipped with Nextcloud, this issue is not exploitab...

@alessio.filippucci/admin-dashboard-core (=0.0.0-development), @avoux/invoicing-manager (>=1.0.6 <=2.0.0) +144 more potentially affected by unknown CVE via quill (>=0.19.14 <=1.3.6)

quill NPM version =0.19.14, =1.0.6, =4.6.201905201249, =4.6.201907261001, =4.5.201903181201, =7.11.2, =3.0.201812052008, =2.0.5-web, =1.0.9, =1.9.0, =0.4.2, =28.3.0, =46.3.1-beta.0 - @microsoft/sp-application-base =1.0.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-588M-9QG5-35PQ...