Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoofing vulnerability in the "files" app. The top navigation bar displayed in the files list contained partially user-controllable input leading to a potential misrepresentation of information. https://nextcloud.com/security/advisory/?id=nc-sa-2017-006 https://hackerone.com/reports/179073 http://www.securityfocus.com/bid/97491
CVE is pretty old and Fedora/Epel are already using upper versions. Hence, not-affected.