diff options
| author | Joas Schilling <coding@schilljs.com> | 2021-01-26 12:27:50 +0300 |
|---|---|---|
| committer | Joas Schilling <coding@schilljs.com> | 2021-01-26 12:27:50 +0300 |
| commit | b91528776c756e4bbde32b8abb4d162e950357f0 (patch) | |
| tree | ab7857cebc36278bcafef3cc328f5ff5bacbc604 /advisories | |
| parent | 7f737d7503f1948e7cf02e4797b14a65c3fb0597 (diff) | |
Fix copy paste fail
Signed-off-by: Joas Schilling <coding@schilljs.com>
Diffstat (limited to 'advisories')
| -rw-r--r-- | advisories/advisories.rss | 2 | ||||
| -rw-r--r-- | advisories/full-list.php | 2 | ||||
| -rw-r--r-- | advisories/nc-sa-2021-003.php | 4 |
3 files changed, 4 insertions, 4 deletions
diff --git a/advisories/advisories.rss b/advisories/advisories.rss index bed35881..ea7bc016 100644 --- a/advisories/advisories.rss +++ b/advisories/advisories.rss @@ -5,7 +5,7 @@ <link>https://nextcloud.com/security/advisories/</link> <description>The Nextcloud security advisories as a RSS feed</description> <ttl>1800</ttl><item> - <title>Server: Stored XSS in markdown file with Nextcloud Talk using Internet Explorer (NC-SA-2021-003)</title> + <title>Server: Denial of Service by requesting to reset a password (NC-SA-2021-003)</title> <description>A wrong check in Nextcloud Server 19 and prior allowed to perform a denial of service attack when resetting the password for a user.<br/><hr/><p><strong><a href="https://nextcloud.com/security/advisory/?id=nC-SA-2021-003">For more information please consult the official advisory.</a></strong></p></description> <link>https://nextcloud.com/security/advisory/?id=nC-SA-2021-003</link> <guid isPermaLink="true">https://nextcloud.com/security/advisory/?id=nC-SA-2021-003</guid> diff --git a/advisories/full-list.php b/advisories/full-list.php index 657f67b9..07a05111 100644 --- a/advisories/full-list.php +++ b/advisories/full-list.php @@ -22,7 +22,7 @@ <h3>Nextcloud Server 20.0.0</h3> <ul> - <li><a href="/security/advisory/?id=NC-SA-2021-003">Stored XSS in markdown file with Nextcloud Talk using Internet Explorer (NC-SA-2021-003)</a> 2020-10-03</li> + <li><a href="/security/advisory/?id=NC-SA-2021-003">Denial of Service by requesting to reset a password (NC-SA-2021-003)</a> 2020-10-03</li> </ul> <hr> diff --git a/advisories/nc-sa-2021-003.php b/advisories/nc-sa-2021-003.php index 2ff59b94..b2096662 100644 --- a/advisories/nc-sa-2021-003.php +++ b/advisories/nc-sa-2021-003.php @@ -6,7 +6,7 @@ </div> <div class="row"> <div class="col-md-12"> - <h2>Stored XSS in markdown file with Nextcloud Talk using Internet Explorer (NC-SA-2021-003)</h2> + <h2>Denial of Service by requesting to reset a password (NC-SA-2021-003)</h2> <p>3rd October 2020</p> <p>Risk level: <strong>Low</strong></p> <p>CVSS v3 Base Score: 7.5 (<a href="https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H">AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</a>)</p> @@ -26,7 +26,7 @@ <h3>Acknowledgements</h3> <p>The Nextcloud team thanks the following people for their research and responsible disclosure of the above advisory:</p> <ul> - <li>Jesús Ramos (contact.makerlab@gmail.com) - Vulnerability discovery and disclosure.</li> + <li><a href="https://makerlab.sytes.net/" target="_blank" rel="noreferrer">Jesús Ramos (contact.makerlab@gmail.com) - Vulnerability discovery and disclosure.</a></li> </ul> <br/> <small style="color:grey">This advisory is licensed <a href="https://creativecommons.org/licenses/by-sa/4.0/">CC BY-SA 4.0</a>.</small> |