4 matches found
CVE-2023-39955
creationtimestamp| type| source ---|---|--- 2023-08-10 18:16:04+00:00| seen| https://t.me/cibsecurity/68221...
CVE-2023-39955 Notes attachment render HTML in preview mode
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a...
CVE-2023-39955 Notes attachment render HTML in preview mode
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a...
CVE-2023-39955
Nextcloud Notes (for Nextcloud) is affected. A cross-site scripting issue exists in Notes versions 4.4.0 through 4.8.0 where creating a note file with HTML causes the content to render in the preview instead of offering the file for download. The issue is fixed in Notes 4.8.0. No workarounds are ...