CVE-2021-41178 : Security Advisory and Response
Learn about CVE-2021-41178 affecting Nextcloud Server versions 20.0.13, 21.0.5, and 22.2.0. Understand the file traversal vulnerability that enables attackers to download SVG files, posing high risks. Find mitigation steps here.
Nextcloud Server prior to versions 20.0.13, 21.0.5, and 22.2.0 is affected by a file traversal vulnerability that allows attackers to download arbitrary SVG images from the system, potentially leading to XSS/phishing attacks.