OpenCloud Reva has a Public Link Exploit
A security issue was discovered in Reva based products that enables a malicious user to bypass the scope validation of a public link, allowing it to access resources outside the scope of a public link.
Advisories for Golang/Github.com/Opencloud-Eu/Reva/V2 package
2026