|Category:||Web application abuses|
|Title:||Nextcloud Server < 14.0.0, < 13.0.3, < 12.0.8 Session fixation on public share page (NC-SA-2018-013) (Linux)|
|Summary:||This host is running Nextcloud Server; and is prone to a session fixation vulnerability.|
This host is running Nextcloud Server
and is prone to a session fixation vulnerability.
A bug causing session fixation could potentially allow an attacker to obtain access to password protected shares.
Nextcloud Server before version 14.0.0, 13.0.x before 13.0.3 and 12.0.x before 12.0.8.
Upgrade Nextcloud Server to version 12.0.8, 13.0.3, or 14.0.0 respectively.
Common Vulnerability Exposure (CVE) ID: CVE-2018-16463|
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 72306 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.