An Insecure direct object reference vulnerability in Nextcloud Server 18.0.2 allowed an malicious user to remote wipe devices of other users when sending a malicious request directly to the endpoint.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nextcloud nextcloud server |