4993 matches found
Nextcloud Android app input validation error vulnerability (CNVD-2019-41896)
Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. An input validation error vulnerability exists in the Nextcloud Android app. An attacker could exploit the vulnerability to repeatedly open and close target files...
Nextcloud Android app input validation error vulnerability
Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. An input validation error vulnerability exists in the Nextcloud Android app. An attacker can exploit the vulnerability to obtain sensitive information...
Nextcloud: SignUp using Fake Email
In this trial I used the email '[email protected]' and after pressing the SIGN UP button it will automatically redirect to https://ppp.woelkli.com/apps/preferredproviders/password/set/emailfakeforregister/H2qlEWHxQ3yiJgCsEXkR8, not through the account verification process first. For full the link Po...
Nextcloud Information Disclosure Vulnerability (CNVD-2019-25332)
Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. An information disclosure vulnerability exists in versions of Nextcloud Server prior to 15.0.1. The vulnerability stems from a configuration or other error in...
Nextcloud Android app information disclosure vulnerability
Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. An information disclosure vulnerability exists in the Nextcloud Android app versions prior to 3.3.0. The vulnerability stems from errors such as configuration during operation of t...
Nextcloud Android app SQL injection vulnerability
Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. A SQL injection vulnerability exists in the Nextcloud Android app versions prior to 3.0.0. The vulnerability stems from a lack of validation of externally entered SQL statements in...
Nextcloud Android app code injection vulnerability
Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. A code injection vulnerability exists in versions of the Nextcloud Android app prior to 3.7.0, which arises from the failure of a network system or product to properly filter...
Nextcloud Android Authorization Issues Vulnerability
Nextcloud Android is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. Nextcloud Android is vulnerable to an authorization issue. The vulnerability stems from a lack of authentication measures or insufficient authentication strength in a networked system ...
CVE-2019-5449
A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events...
CVE-2019-5454
SQL Injection in the Nextcloud Android app prior to version 3.0.0 allows to destroy a local cache when a harmful query is executed requiring to resetup the account...
CVE-2019-5455
Bypassing lock protection exists in Nextcloud Android app 3.6.0 when creating a multi-account and aborting the process...
CVE-2019-5451
Bypass lock protection in the Nextcloud Android app prior to version 3.6.1 allows accessing the files when repeatedly opening and closing the app in a very short time...
CVE-2019-5453
Bypass lock protection in the Nextcloud Android app prior to version 3.3.0 allowed access to files when being prompted for the lock protection and switching to the Nextcloud file provider...
CVE-2019-5452
Bypass lock protection in the Nextcloud Android app prior to version 3.6.2 causes leaking of thumbnails when requesting the Android content provider although the lock protection was not solved...
CVE-2019-5450
Improper sanitization of HTML in directory names in the Nextcloud Android app prior to version 3.7.0 allowed to style the directory name in the header bar when using basic HTML...
CVE-2019-5452
Bypass lock protection in the Nextcloud Android app prior to version 3.6.2 causes leaking of thumbnails when requesting the Android content provider although the lock protection was not solved...
CVE-2019-5454
SQL Injection in the Nextcloud Android app prior to version 3.0.0 allows to destroy a local cache when a harmful query is executed requiring to resetup the account...
CVE-2019-5453
Bypass lock protection in the Nextcloud Android app prior to version 3.3.0 allowed access to files when being prompted for the lock protection and switching to the Nextcloud file provider...
CVE-2019-5449
A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events...
CVE-2019-5450
Improper sanitization of HTML in directory names in the Nextcloud Android app prior to version 3.7.0 allowed to style the directory name in the header bar when using basic HTML...