CVE-2021-32676
Nextcloud Talk suffers a session fixation vulnerability: password-protected shared talks did not rotate the session cookie after authentication in versions prior to 9.0.10, 10.0.8 and 11.2.2. Exploitation could allow an attacker to hijack a guest session. Remediation is to upgrade the Nextcloud T...