5 matches found
Nextcloud: Chat room member disclosure via autocomplete API
It was possible to find out who is in a Spreed chat room using the autocomplete API, even if the person is not a member of the room. This vulnerability could have been exploited to gain information about the members of a chat room for malicious purposes...
Moderator can enable cam/mic remotely if cam/mic-permission was disabled while user has activated cam/mic
None...
Nextcloud: Persistent XSS via filename in projects
CVSS ---- Medium 5.4 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Description ----------- Affected: Talk / Spreed 6.0.3 The name of a file is echoed without encoding when moving the mouse onto it in the projects tab of a conversation, leading to persistent XSS. A successful attack requires an...
Nextcloud: Talk / spreed: Disclosure of Room names and participants for password protected rooms
CVSS ---- 5.3 Medium CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS isn't always as fine-grained as I'd like; personally, I would rate the issue somewhere between low and medium Description ----------- The API of the official spreed/talk extension reveals potentially sensitive information such...
Nextcloud: Stored XSS on new Calling plugin (spreed)
There's a stored xss vulnerability .... Proof Of Concept : =============== 1. Set name as an xss payload like "x. F143238 2. Invite people to single call room. 3. Xss will execute in IE. It doesn't support CSP F143237 Impact : ======== Admin user can be xssed via this method if admin uses browser...