Lucene search
+L

77 matches found

CNVD
CNVD
added 2021/07/15 12:0 a.m.6 views

Unspecified vulnerability in Nextcloud (CNVD-2021-51815)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that stems from a lack of privilege checking in Nextcloud Server, where tokens are able to change their ow...

8.8CVSS6.5AI score0.02309EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.10 views

Unspecified Vulnerability in Nextcloud (CNVD-2021-51800)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. An information disclosure vulnerability exists in Nextcloud Mail versions prior to 1.9.6, which stems from a privacy filter failing to filter images with the...

4.3CVSS6.2AI score0.01146EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.9 views

Unspecified Vulnerability in Nextcloud (CNVD-2021-51814)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server versions prior to 19.0.13, 20.0.11, and 21.0.3, which stems from the audit logging feature failing to log...

3.3CVSS6.5AI score0.00355EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.7 views

Unspecified vulnerability in Nextcloud (CNVD-2021-51803)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability in Nextcloud Server in versions prior to 19.0.13, 20.011, and 21.0.3 can be exploited by an attacker to enumerate potentially valid...

5.3CVSS6.6AI score0.01322EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.8 views

Unspecified Vulnerability in Nextcloud (CNVD-2021-51810)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server versions prior to 19.0.13, 20.0.11, and 21.0.3, which stems from the fact that rate limiting in Nextcloud...

5.3CVSS6.5AI score0.01374EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.8 views

Unspecified vulnerability in Nextcloud (CNVD-2021-51795)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server versions prior to 19.0.13, 20.011, and 21.0.3, which can be exploited by an attacker to enumerate...

7.5CVSS6.6AI score0.01702EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.6 views

Nextcloud 安全漏洞

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server versions prior to 19.0.13, 20.0.11, and 21.0.3, which stems from the fact that rate limiting in Nextcloud...

5.3CVSS5.6AI score0.01374EPSS
Exploits0References8
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.7 views

Nextcloud 安全漏洞

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server versions prior to 19.0.13, 20.011, and 21.0.3, which can be exploited by an attacker to enumerate...

7.5CVSS5.6AI score0.01702EPSS
Exploits0References9
CNVD
CNVD
added 2021/06/03 12:0 a.m.9 views

Unspecified vulnerability in Nextcloud (CNVD-2021-39032)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that can be exploited by an attacker to send a user ID to a lookup server when the user is not set to a...

4CVSS6.6AI score0.01205EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/03 12:0 a.m.10 views

Unspecified Vulnerability in Nextcloud (CNVD-2021-39030)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that can be exploited by an attacker to access basic information about a server user by accessing a public...

8.6CVSS6.4AI score0.01841EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/03 12:0 a.m.6 views

Unspecified vulnerability in Nextcloud (CNVD-2021-39033)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server, which stems from the fact that when a sharing user opens the sharing panel and attempts to delete the...

3.5CVSS6.6AI score0.01034EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/03 12:0 a.m.7 views

Unspecified Vulnerability in Nextcloud (CNVD-2021-39031)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that stems from a public link that can be added as a federated file share. An attacker could use this...

9.1CVSS6.5AI score0.01849EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/03/03 12:0 a.m.2 views

PT-2021-15249 · Nextcloud +1 · Nextcloud +1

Name of the Vulnerable Software and Affected Versions: Nextcloud versions prior to 20.0.6 Description: A missing user check in Nextcloud inadvertently populates a user's own credentials for other users' external storage configuration when not already configured yet. Recommendations: For Nextcloud...

10CVSS5.8AI score0.02604EPSS
Exploits2References40
CNVD
CNVD
added 2020/11/16 12:0 a.m.8 views

Nextcloud Server Server-Side Encryption Keys Insufficiently Protected Vulnerability

Nextcloud is a set of client-server software for creating file hosting services and using them. Nextcloud Server 19.0.1 suffers from an insufficiently protected server-side encryption key vulnerability. An attacker could exploit the vulnerability by replacing the encryption key...

8.1CVSS6.7AI score0.00727EPSS
Exploits1References1
OSV
OSV
added 2017/03/28 2:59 a.m.8 views

CVE-2016-9465

Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Stored XSS in CardDAV image export. The CardDAV image export functionality as implemented in Nextcloud/ownCloud allows the download of images stored within a vCard. Due to not performing any kind of verification o...

5.4CVSS5.1AI score
Exploits0References6
OSV
OSV
added 2017/03/28 2:59 a.m.11 views

CVE-2016-9467

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to displa...

5.3CVSS6.5AI score
Exploits0References11
OSV
OSV
added 2017/03/28 2:59 a.m.10 views

CVE-2016-9459

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment...

6.1CVSS6.2AI score
Exploits0References8
Rows per page
Query Builder