Content Spoofing /Text Injection in https://docs.nextcloud.com

Disclosed: 2019-09-05 06:08:16 By pamper To nextcloud

Low

Vulnerability Details

Hello Team, I have found a Content Spoofing / Text Injection on this domain https://docs.nextcloud.com Go to https://docs.nextcloud.com/!!!ATENTION!%20This%20server%20is%20on%20Maintenance%20please%20go%20to%20WWW.EVIL.COM%20%20%20%20%20%20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20% 20 Referense: https://hackerone.com/reports/222058 https://hackerone.com/reports/171497 https://hackerone.com/reports/179073 Cheers! @pamper ## Impact .

Actions

View on HackerOne

Report Stats

Report ID: 666557
State: Closed
Substate: resolved
Upvotes: 14

Content Spoofing /Text Injection in https://docs.nextcloud.com

Vulnerability Details

Actions

Report Stats

Share this report