Contacts only sanitizes PHOTO svg if mime type is all lower case

Disclosed: 2023-06-24 09:25:24 By christophwurst To nextcloud

None

Vulnerability Details

No vulnerability description provided or it is restricted.

Actions

View on HackerOne

Report Stats

Report ID: 1789602
State: Closed
Substate: resolved
Upvotes: 3

Share this report