CVE-2020-8153

CVE-2020-8153 concerns Nextcloud Groupfolders app (v4.0.3). The root cause is improper access control that lets an attacker delete hidden directories when renaming an accessible item to the same name. Documented impact is potential data loss in Groupfolders; exploitation details are not provided ...

CVE-2025-66545

CVE-2025-66545 affects Nextcloud Groupfolders . A user with read-only permissions could restore a file from the trash bin in group/shared folders, before versions 14.0.11, 15.3.12, 16.0.15, 17.0.14, 18.1.8, 19.1.8, and 20.1.2. The issue is resolved in those respective fixed versions. If you use G...