2 matches found
CVE-2019-15614
Missing sanitization in the iOS App 2.24.4 causes an XSS when opening malicious HTML files...
CVE-2019-15614
CVE-2019-15614 describes a missing sanitization in the iOS Nextcloud app (version 2.24.4) that causes a cross-site scripting (XSS) vulnerability when opening malicious HTML files. The root cause is insufficient input sanitization in the in-app webview, enabling client-side code execution. The iss...