Lucene search
K

4993 matches found

Hacker One
Hacker One
added 2019/07/01 5:16 p.m.93 views

Nextcloud: Code injection in macOS Desktop Client

Vulnerability description I've identified a code injection vulnerability in your macOS desktop client. Any malicious application, running with standard user permissions is able to exploit this vulnerability and execute code in your application's context. Requirements In order to exploit this...

4.6CVSS0.2AI score0.00689EPSS
Exploits1
Hacker One
Hacker One
added 2019/07/01 4:12 p.m.28 views

Nextcloud: Delete permission can be added on reshare

user0 creates folder /test user0 creates file /test/file.txt user0 shares folder /test with user1 with read+share permissions 17 user1 receives the folder /test and can read-download /test/file.txt but not delete - good user1 uses the sharing API to share folder /test with user2, and specifies...

6.9AI score
Exploits0
Hacker One
Hacker One
added 2019/06/28 5:16 a.m.37 views

Nextcloud: Some HTML Tags are Getting Executed in com.nextcloud.client

What is the Vulnerability? HTML Tags such as , , and are Getting Executed in Next Cloud Client Mobile Application for Android which can then Results to Code Injection. Reproduction Steps 1. Using Next Cloud Client Mobile App on Android, Rename a Folder to test Our HTML tag Was Executed F518303...

4.6CVSS0.7AI score0.00495EPSS
Exploits1
Hacker One
Hacker One
added 2019/06/28 3:1 a.m.18 views

Nextcloud: Passcode Protection in Android Devices Can be Bypassed.

What is The Vulnerability? The Passcode can be bypassed by calling a MainLoginActivity which is com.owncloud.android.ui.activity.FileDisplayActivity , We have successfully bypassed the passcode and are redirected to the App's User Interface. of the user’s credentials: Android Version: 9 Non Roote...

1.2AI score
Exploits0
Nextcloud
Nextcloud
added 2019/06/27 12:0 a.m.41 views

Improper permission preservation on reshares (NC-SA-2020-012)

Improper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare with write permissions when sharing the mount point of a share they received, as a public link...

4CVSS2.2AI score0.01056EPSS
Exploits0Affected Software1
Hacker One
Hacker One
added 2019/06/26 3:58 p.m.29 views

Nextcloud: CSRF vulnerability that allows an attacker to modify encryption settings

The POST request to /ocs/v2.php/apps/provisioningapi/api/v1/config/apps/core/encryptionenabled is missing a unique token, so that if an attack can trick an admin user with an active session to visit an attacker controlled website, he/she can control the core application setting "encryptionenabled...

0.5AI score
Exploits0
Nextcloud
Nextcloud
added 2019/06/26 12:0 a.m.34 views

User IDs and Nextcloud server leaked to Nextcloud Lookup server with disabled settings (NC-SA-2019-016)

Exposure of Private Information in Nextcloud Server 16.0.1 causes the server to send it's domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled...

5CVSS1.6AI score0.01924EPSS
Exploits1Affected Software1
Hacker One
Hacker One
added 2019/06/22 12:4 a.m.62 views

Nextcloud: Wordpress Users Disclosure

Information Using REST API, we can see all the WordPress users/author with some of their information. Step to Reproduce You can get user info by entering below url in your browser: https://nextcloud.com/wp-json/wp/v2/users Reference: 356047 Impact Authors : LTR , LTREditor can be created scenario...

1.2AI score
Exploits0
Hacker One
Hacker One
added 2019/06/20 3:20 p.m.29 views

Nextcloud: Arbitrary code execution in desktop client via OpenSSL config

Summary: The nextcloud windows desktop application utilizes a precompiled OpenSSL library called libeay32.dll. This OpenSSL library attempts to load c:\usr\local\ssl\openssl.cnf when the nextcloud windows application is launched. The c:\usr\local\ssl\openssl.cnf file does not exist. By default, o...

4.6CVSS0.2AI score0.00659EPSS
Exploits1
Hacker One
Hacker One
added 2019/06/19 4:50 a.m.93 views

Nextcloud: User with read-only access to a share can gain write access to sub-folders in the share

user0 creates folders /test and /test/sub user0 creates file /test/sub/file.txt user0 shares folder /test with user1 with read+share permissions 17 user1 receives the folder /test and can read-download /test/sub/file.txt - good user1 creates a link share of /test/sub - it has permissions 1...

4CVSS6.8AI score0.01056EPSS
Exploits0
Hacker One
Hacker One
added 2019/06/11 12:15 p.m.43 views

Nextcloud: Reflected XSS / Markup Injection in `index.php/svg/core/logo/logo` parameter `color`

I just found a reflected Cross-Site Scripting XSS vulnerability in Nextcloud Server that affects current stable and dates back to at least 15.0.5. The vulnerability seems mitigated by a Content-Security-Policy CSP, but there might be a residual risk for phishing, due to the CSP's lack of a...

4.3CVSS0.00916EPSS
Exploits1
CNVD
CNVD
added 2019/06/10 12:0 a.m.5 views

Extract add-on for Nextcloud OS Command Injection Vulnerability

Extract add-on for Nextcloud is a set of component applications for Netcloud. An input validation vulnerability exists in Extract add-on for Nextcloud lib/Controller/ExtractionController.php, which allows remote attackers to submit a special request that can be used to execute arbitrary OS comman...

9CVSS7.7AI score0.02555EPSS
Exploits1References1
CNVD
CNVD
added 2019/06/10 12:0 a.m.5 views

Nextcloud Extract App OS Command Injection Vulnerability

Nextcloud is an open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany.Extract App is one of the compressed file extractor. An operating system command injection vulnerability exists in Nextcloud Extract App versions prior to 1.2.0. The...

7.8AI score
Exploits0References1
NVD
NVD
added 2019/06/05 2:29 p.m.14 views

CVE-2019-12739

lib/Controller/ExtractionController.php in the Extract add-on before 1.2.0 for Nextcloud allows Remote Code Execution via shell metacharacters in a RAR filename via ajax/extractRar.php nameOfFile and directory parameters...

9CVSS9.4AI score0.02555EPSS
Exploits1References2
OSV
OSV
added 2019/06/05 2:29 p.m.6 views

CVE-2019-12739

lib/Controller/ExtractionController.php in the Extract add-on before 1.2.0 for Nextcloud allows Remote Code Execution via shell metacharacters in a RAR filename via ajax/extractRar.php nameOfFile and directory parameters...

8.8CVSS7.4AI score0.02555EPSS
Exploits1References2
Prion
Prion
added 2019/06/05 2:29 p.m.24 views

Remote code execution

lib/Controller/ExtractionController.php in the Extract add-on before 1.2.0 for Nextcloud allows Remote Code Execution via shell metacharacters in a RAR filename via ajax/extractRar.php nameOfFile and directory parameters...

6.5CVSS8.9AI score0.02555EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/06/05 1:57 p.m.24 views

CVE-2019-12739

lib/Controller/ExtractionController.php in the Extract add-on before 1.2.0 for Nextcloud allows Remote Code Execution via shell metacharacters in a RAR filename via ajax/extractRar.php nameOfFile and directory parameters...

9CVSS9.4AI score0.02555EPSS
Exploits1References2
CVE
CVE
added 2019/06/05 1:57 p.m.71 views

CVE-2019-12739

The CVE-2019-12739 entry concerns the Nextcloud Extract add-on: lib/Controller/ExtractionController.php vulnerable before version 1.2.0. It allows Remote Code Execution via shell metacharacters in a RAR filename passed through ajax/extractRar.php (nameOfFile and directory parameters). Affected co...

9CVSS8.9AI score0.02555EPSS
Exploits1References2Affected Software1
Hacker One
Hacker One
added 2019/05/30 7:32 p.m.36 views

Nextcloud: Non-admin users can trigger writes to memcached by entering a malicious server as a share URL

Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long...

4CVSS3.8AI score0.00765EPSS
Exploits0
Hacker One
Hacker One
added 2019/05/26 4:50 a.m.36 views

Nextcloud: Linux client is vulnerable to directory traversal when downloading files

Summary The Nextcloud Linux client is vulnerable to directory traversal when downloading files from a Nextcloud server. A malicious Nextcloud administrator can exploit the vulnerability to write arbitrary files to a user computers with the potential for remote command execution under certain...

7.1CVSS7.2AI score0.2245EPSS
Exploits1
Rows per page
Query Builder