Ahsan

**Name of the Vulnerable Software and Affected Versions** Talend Administration Center (affected versions not specified) **Description** A stored cross-site scripting (XSS) issue exists where an attacker with server management permissions can store a malicious payload. This payload is subsequently triggered when accessed by another user. Cross-site scripting is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Server versions prior to 9.0.55 Nextcloud Server versions prior to 10.0.2 **Description** The issue concerns a Content-Spoofing vulnerability in the files app. It allows for partially user-controllable input in the top navigation bar of the files list, potentially leading to a misrepresentation of information. **Recommendations** For versions prior to 9.0.55, update to version 9.0.55 or later. For versions prior to 10.0.2, update to version 10.0.2 or later.