Nextcloud: Text does not respect 'Allow download' permissions

A security vulnerability was discovered in Nextcloud that allowed users to bypass the 'Allow download' permission for sensitive images shared in a folder. This vulnerability allowed unauthorized users to download the images, potentially leading to the leakage of sensitive information...

websvn 操作系统命令注入漏洞

websvn is a software application. An online Subversion repository viewer. An operating system command injection vulnerability exists in WebSVN. The vulnerability stems from a flaw found in WebSVN 2.3.2. Without prior authentication, if the "allowDownload" option is enabled in config.php, an...