5 matches found
EUVD-2023-29927
Malicious code in bioql PyPI...
Code injection
Nextcloud Talk is a fully on-premises audio/video and chat communication service. When cron jobs were misconfigured and therefore messages are not expired, the API would still return them while they were then hidden by the frontend code. It is recommended that the Nextcloud Talk is upgraded to...
CVE-2023-26041 Nextcloud Talk messages can still be seen on conversation after expiring when cron is misconfigured
Nextcloud Talk is a fully on-premises audio/video and chat communication service. When cron jobs were misconfigured and therefore messages are not expired, the API would still return them while they were then hidden by the frontend code. It is recommended that the Nextcloud Talk is upgraded to...
PT-2023-20444 · Nextcloud · Nextcloud Talk
Name of the Vulnerable Software and Affected Versions: Nextcloud Talk versions prior to 15.0.3 Description: Nextcloud Talk is a fully on-premises audio/video and chat communication service. When cron jobs were misconfigured, messages were not expired, and the API would still return them while the...
Nextcloud: Messages can still be seen on conversation after expiring when cron is misconfigured
A vulnerability in Nextcloud Talk allowed expired chat messages to still be visible to anyone with access to the conversation, even after the message expiration time had passed...