Content Spoofing/Text Injection in nextcloud.com

Disclosed: 2017-04-19 00:35:03 By demo--hacker To nextcloud

Low

Vulnerability Details

Greetings, Hello Team, I have found a Content Spoofing/Text Injection on this domain `https://nextcloud.com` ### PoC URL: https://nextcloud.com/wp-content/cache/minify/%0d%0ahas%20moved%20to%20www.attacker.com.Please%20visit%20attacker.com%20present%20resource ### PoC Screen Shot: {F168750} Let me know if you need more information. Cheers! *Rey Mark Jerusha*

Actions

View on HackerOne

Report Stats

Report ID: 213360
State: Closed
Substate: resolved
Upvotes: 5

Content Spoofing/Text Injection in nextcloud.com

Vulnerability Details

Actions

Report Stats

Share this report