34 matches found
GHSA-VM85-HXW5-5432 vulnerabilities
Vulnerabilities for packages: nextcloud-server...
EUVD-2017-1240
Malware in sbrugna...
EUVD-2017-1245
Malware in sbrugna...
EUVD-2017-1248
Malware in sbrugna...
EUVD-2021-19477
Malware in sbrugna...
EUVD-2022-29584
Malicious code in bioql PyPI...
EUVD-2024-45932
Malicious code in bioql PyPI...
EUVD-2023-52363
Malicious code in bioql PyPI...
EUVD-2023-52366
Malicious code in bioql PyPI...
EUVD-2024-45927
Malicious code in bioql PyPI...
EUVD-2023-36567
Malicious code in bioql PyPI...
EUVD-2023-53711
Malicious code in bioql PyPI...
EUVD-2022-41806
Malicious code in bioql PyPI...
EUVD-2023-32471
Malicious code in bioql PyPI...
ROS-20250619-07
Vulnerability in Nextcloud cloud storage creation and utilization software Server is related to a lack of quota checking for attachments. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in cloud software for creating and...
CVE-2024-52523
Nextcloud Server is a self hosted personal cloud system. After setting up a user or administrator defined external storage with fixed credentials, the API returns them and adds them into the frontend again, allowing to read them in plain text when an attacker already has access to an active sessi...
CVE-2024-52519
Nextcloud Server is a self hosted personal cloud system. The OAuth2 client secrets were stored in a recoverable way, so that an attacker that got access to a backup of the database and the Nextcloud config file, would be able to decrypt them. It is recommended that the Nextcloud Server is upgrade...
CVE-2024-52515
Nextcloud Server is a self hosted personal cloud system. After an admin enables the default-disabled SVG preview provider, a malicious user could upload a manipulated SVG file referencing paths. If the file would exist the preview of the SVG would preview the other file instead. It is recommended...
CVE-2023-48302
Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 25.0.0 and prior to versions 25.0.13, 26.0.8, and 27.1.3 of Nextcloud Server and Nextcloud Enterprise Server, when a user is tricked into copy pasting HTML code without markup Ctrl+Shift+V the...
CVE-2023-48306
Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 25.0.0 and prior to versions 25.0.11, 26.0.6, and 27.1.0 of Nextcloud Server and starting in version 22.0.0 and prior to versions 22.2.10.16, 23.0.12.11, 24.0.12.7, 25.0.11, 26.0.6, and 27.1.0...