Lucene search
K

1092 matches found

Chainguard
Chainguard
added 2026/01/28 1:17 p.m.14 views

CVE-2025-66547 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

4.3CVSS5.9AI score0.00242EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/28 1:17 p.m.19 views

CVE-2025-66552 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

4.3CVSS5.9AI score0.00269EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/15 7:48 p.m.16 views

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6CVSS7AI score0.00176EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/15 7:48 p.m.7 views

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Chainguard
Chainguard
added 2026/01/15 7:17 p.m.12 views

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6CVSS7AI score0.00176EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/15 7:17 p.m.4 views

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.5 views

CVE-2025-64500 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7.3CVSS7AI score0.01326EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.4 views

GHSA-3RG7-WF37-54RM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:30 a.m.5 views

GHSA-3RG7-WF37-54RM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:30 a.m.8 views

CVE-2025-64500 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7.3CVSS7AI score0.01326EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/12/15 12:0 a.m.5 views

Nextcloud Server IDOR Vulnerability (GHSA-h6j9-6xjq-44c4)

Nextcloud Server is prone to an Insecure Direct Object Reference IDOR vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS7AI score0.00237EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/13 12:16 a.m.7 views

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

4.3CVSS6.7AI score0.00237EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/12 6:30 p.m.8 views

EUVD-2025-203106

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

4.3CVSS6.2AI score0.00237EPSS
Exploits1References4
CVE
CVE
added 2025/12/12 12:0 a.m.18 views

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core/preview endpoint. An authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter, enabling unauthorized disclosure of sensitive data (text, ...

4.3CVSS6.3AI score0.00237EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/12/12 12:0 a.m.26 views

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

0.00237EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/12 12:0 a.m.4 views

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

6.3AI score0.00237EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.6 views

PT-2025-50959

Name of the Vulnerable Software and Affected Versions Nextcloud Server version 30.0.0 Description Nextcloud Server 30.0.0 contains an Insecure Direct Object Reference IDOR issue in the /core/preview endpoint. An authenticated user can access previews of arbitrary files belonging to other users by...

4.3CVSS6.4AI score0.00237EPSS
Exploits1References15
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.5 views

Nextcloud Server 安全漏洞

Nextcloud Server is a Nextcloud server program from Nextcloud Open Source. A security vulnerability exists in Nextcloud Server version 30.0.0, which stems from the presence of an insecure direct object reference in the /core/preview endpoint that could lead to unauthorized access to sensitive dat...

4.3CVSS6.3AI score0.00237EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2025/12/09 12:23 a.m.7 views

SUSE CVE-2025-66512

Nextcloud Server is a self hosted personal cloud system. In Nextcloud Server and Server Enterprise prior to 31.0.12 and 32.0.3, a missing sanitization allowed malicious users to circumvent the content security policy when a malicious user manages to trick a user it viewing an uploaded SVG outside...

6.1CVSS6.4AI score0.00237EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/12/09 12:0 a.m.3 views

Nextcloud Server Information Disclosure Vulnerability (GHSA-495w-cqv6-wr59)

Nextcloud Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.9CVSS6.5AI score0.00302EPSS
Exploits0References1
Rows per page
Query Builder