Improper input-size validation on the user new session name can result in server-side DDoS. https://hackerone.com/reports/1153138 Severity: Medium | 100 USD Reported To: Nextcloud Reported By: #demonia State: Resolved Disclosed: May 31, 2022, 2:37pm (UTC) 135 views14:40