A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.
The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Nextcloud_server | Nextcloud | * | 15.0.14 (excluding) |
Nextcloud_server | Nextcloud | 16.0.0 (including) | 16.0.7 (excluding) |
Nextcloud_server | Nextcloud | 17.0.0 (including) | 17.0.2 (excluding) |