GHSA-3qm7-9jrc-h4gp
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
Nextcloud Server prior to 20.0.6 is vulnerable to reflected cross-site scripting (XSS) due to lack of sanitization in `OC.Notification.show`.
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: August 1, 2025 6:44 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.