Lucene search

K

Circles Security Vulnerabilities

cve
cve

CVE-2023-23881

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GreenTreeLabs Circles Gallery plugin <= 1.0.10...

5.9CVSS

4.8AI Score

0.0005EPSS

2023-05-03 04:15 PM
17
cve
cve

CVE-2021-37630

Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application allowed any user to join any "Secret Circle" without approval by the Circle owner leaking private information. It is recommended that Nextcloud Circles is...

6.5CVSS

6.4AI Score

0.001EPSS

2021-09-07 08:15 PM
25
cve
cve

CVE-2021-32782

Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability. Due the strict Content-Security-Policy shipped with Nextcloud, this issue is not...

5.8CVSS

5.1AI Score

0.001EPSS

2021-09-07 08:15 PM
22
cve
cve

CVE-2019-15610

Improper authorization in the Circles app 0.17.7 causes retaining access when an email address was removed from a...

4.3CVSS

4.6AI Score

0.001EPSS

2020-02-04 08:15 PM
40