3 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-8189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html including local links when responding with invalid data on the login...
SUSE CVE-2020-8189
A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html including local links when responding with invalid data on the login attempt...
CVE-2020-8189
CVE-2020-8189 affects Nextcloud Desktop Sync client (Nextcloud Desktop client) 2.6.4, where an XSS on the login response could render arbitrary HTML, including local links. Root cause: cross-site scripting in the login handling. Impact stated in connected docs: ability to present HTML content in ...