Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
NextcloudCircles

3 matches found

CVE
CVEadded 2020/02/04 7:8 p.m.63 views

CVE-2019-15610

CVE-2019-15610 affects Nextcloud Circles (app version 0.17.7). The vulnerability is described as improper authorization that allows a circle member’s access to shared items to persist after their email address has been removed from the circle. Exploitation details are not provided in the Initial ...

4.3CVSS4.6AI score0.00561EPSS
CVE
CVEadded 2021/09/07 8:0 p.m.52 views

CVE-2021-32782

CVE-2021-32782 pertains to Nextcloud Circles and is a stored Cross-Site Scripting (XSS) vulnerability. The issue affects Nextcloud Circles and is mitigated in modern browsers that enforce Content-Security-Policy (CSP); exploitation is noted as not feasible on CSP-compliant browsers, but it remain...

5.8CVSS5.1AI score0.00358EPSS
CVE
CVEadded 2021/09/07 8:0 p.m.50 views

CVE-2021-37630

CVE-2021-37630 affects Nextcloud Circles. The issue is an authorization flaw in affected versions prior to 0.19.15, 0.20.11, or 0.21.4 that allows any user to join a Secret Circle without the circle owner’s approval, leaking private information. The vulnerability is mitigated only by upgrading Ne...

6.5CVSS6.4AI score0.00327EPSS