Open redirect on "Unsupported browser" warning
Package
Server
(Nextcloud)
Affected versions
>= 26.0.0
Patched versions
26.0.2
Server
(Nextcloud Enterprise)
>= 26.0.0
26.0.2
Impact
An attacker could supply a URL that redirects an unsuspecting victim from a legitimate domain to an attacker's site.
Patches
It is recommended that the Nextcloud Server is upgraded to 26.0.2
It is recommended that the Nextcloud Enterprise Server is upgraded to 26.0.2
Workarounds
References
For more information
If you have any questions or comments about this advisory: