Lucene search
K

5019 matches found

Nuclei
Nuclei
added 17 hours ago14 views

Windmill/Nextcloud Flow < 1.603.3 - Unauthenticated Path Traversal

Windmill 1.603.3 contains a path traversal caused by unsanitized filename parameter in getlogfile endpoint, letting unauthenticated attackers read arbitrary files on the server, exploit requires no authentication. id: CVE-2026-29059 info: name: Windmill/Nextcloud Flow 1.603.3 - Unauthenticated Pa...

7.5CVSS7.1AI score0.02584EPSS
Exploits0References3
Chainguard
Chainguard
added 4 days ago9 views

CVE-2026-55599 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8CVSS5.9AI score0.00133EPSS
Exploits1
Wolfi
Wolfi
added 4 days ago6 views

CVE-2026-55599 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8CVSS5.9AI score0.00133EPSS
Exploits1
Wolfi
Wolfi
added 5 days ago8 views

CVE-2016-10744 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6.1CVSS6.6AI score0.02183EPSS
Exploits0
Wolfi
Wolfi
added 5 days ago7 views

GHSA-RF66-HMQF-Q3FC vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.9AI score
Exploits0
Chainguard
Chainguard
added 5 days ago7 views

CVE-2016-10744 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6.1CVSS6.6AI score0.02183EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

GHSA-RF66-HMQF-Q3FC vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.9AI score
Exploits0
Fedora
Fedora
added 2026/07/05 12:52 a.m.11 views

[SECURITY] Fedora 43 Update: nextcloud-33.0.6-1.fc43

NextCloud gives you universal access to your files through a web interface or WebDAV. It also provides a platform to easily view & sync your contacts, calendars and bookmarks across all your devices and enables basic editing rig ht on the web. NextCloud is extendable via a simple but powerful API...

8.7CVSS7.1AI score0.01041EPSS
Exploits8
Wolfi
Wolfi
added 2026/07/03 2:16 p.m.17 views

GHSA-V6WH-96G9-6WX3 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2026/07/03 2:16 p.m.19 views

GHSA-FX2H-PF6J-XCFF vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2026/07/03 2:16 p.m.18 views

CVE-2026-53571 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

8.2CVSS5.9AI score0.00393EPSS
Exploits2
Wolfi
Wolfi
added 2026/07/03 2:16 p.m.16 views

CVE-2026-53632 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.5CVSS5.9AI score0.00322EPSS
Exploits0
NVD
NVD
added 2026/06/26 8:17 p.m.8 views

CVE-2026-52782

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is an IDOR through /projects//settings/projectstorages/ via PATCH parameter "storagesprojectstorageprojectfolderid" leads to Access to Unauthorized Resources. A project-admin in one project can...

9.9CVSS0.00258EPSS
Exploits0References1
CVE
CVE
added 2026/06/26 6:59 p.m.23 views

CVE-2026-52782

OpenProject versions prior to 17.3.3 and 17.4.1 are affected by an IDOR in /projects//settings/project_storages/ via PATCH parameter storages_project_storage[project_folder_id], allowing a project-admin to hijack another project’s managed Nextcloud/OneDrive folder on the same storage. The vulnera...

9.9CVSS5.7AI score0.00258EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.13 views

PT-2026-52913

Name of the Vulnerable Software and Affected Versions OpenProject versions prior to 17.3.3 OpenProject versions prior to 17.4.1 Description An Insecure Direct Object Reference IDOR exists in the project storage settings. A project administrator can gain unauthorized access to the managed Nextclou...

9.9CVSS5.8AI score0.00258EPSS
Exploits0References3
Chainguard
Chainguard
added 2026/06/24 8:18 p.m.8 views

GHSA-38CX-CQ6F-5755 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/24 8:18 p.m.7 views

CVE-2026-48736 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score0.00029EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/24 8:17 p.m.9 views

GHSA-38CX-CQ6F-5755 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/24 8:17 p.m.8 views

CVE-2026-48736 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score0.00029EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/23 8:17 a.m.14 views

GHSA-WPWQ-4J6V-78M3 vulnerabilities

Vulnerabilities for packages: drupal, nextcloud-server, privatebin...

6.1AI score
Exploits0
Rows per page
Query Builder