## Description
### Impact
When cron jobs were misconfigured and therefore messages are not expired, the API would still return them while they were then hidden by the frontend code.
### Patches
It is recommended that the Nextcloud Talk is upgraded to 15.0.3
### Workarounds
* No workaround available
### References
* [HackerOne]()
* [Pull request]()
### For more information
If you have any questions or comments about this advisory:
* Create a post in [nextcloud/security-advisories]()
* Customers: Open a support ticket at [support.nextcloud.com]()Read More