Nextcloud Dialogs
1 CVEs
product
Monthly
The Nextcloud dialogs library (npm package @nextcloud/dialogs) before 3.1.2 insufficiently escaped text input passed to a toast. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Node.js
Nextcloud
XSS
Nextcloud Dialogs
NVD
GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-29438
npm
EPSS 1%
CVSS 5.4
MEDIUM
PATCH
This Month
The Nextcloud dialogs library (npm package @nextcloud/dialogs) before 3.1.2 insufficiently escaped text input passed to a toast. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Node.js
Nextcloud
XSS
+1
NVD
GitHub