Itsbalvant

**Name of the Vulnerable Software and Affected Versions** Nextcloud versions 1.15.0 through 1.15.3 Nextcloud versions 1.16.0 through 1.16.2 Nextcloud versions 1.17.0 Nextcloud versions 1.18.0 **Description** An issue exists in the content collaboration platform where a malicious user possessing an end-to-end encrypted files drop link can upload files into other end-to-end encrypted folders belonging to the share owner. This action is limited to dropping files; reading or modifying existing files is not possible. **Recommendations** Update to version 1.15.4 Update to version 1.16.3 Update to version 1.17.1 Update to version 1.18.1