Filters
Nextcloud Nextcloud ServerNextcloud Server's read-only users can restore old versions
4.3
First published (updated )
Nextcloud Nextcloud ServerWorkflows do not require password confirmation on API level
5.4
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server vulnerable to attacker enabling/disabling birthday calendar for any user
4.3
First published (updated )
Nextcloud Nextcloud ServerRate limiter not working reliable when Memcached is installed in Nextcloud
4.3
First published (updated )
Nextcloud Nextcloud ServerMissing brute force protection on password reset token OAuth2 API controller
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerAdvanced permissions not respected when copying entire group folders
6.5
First published (updated )
Nextcloud Nextcloud ServerFull path of data directory exposed to Nextcloud server users
4.3
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server vulnerable to SSRF via filter bypass due to lax checking on IPs
5.3
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server's missing rate limiting on password reset functionality allows sending lots of emails
5.3
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server's disabled download shares still allow download through preview images
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerNextcloud Server's calendar name length not validated before writing to database
5.3
First published (updated )
Nextcloud Nextcloud Enterprise ServerMissing length validation of user displayname in nextcloud server
6.5
First published (updated )
Nextcloud Nextcloud Enterprise ServerDatabase resource exhaustion for logged-in users via sharee recommendations with circles
4.8
First published (updated )
Nextcloud Nextcloud Enterprise ServerException logging in Sharepoint app reveals clear-text connection details
6.5
First published (updated )
Nextcloud Nextcloud Enterprise ServerProfile of disabled user stays accessible
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud Enterprise ServerServer-Side Request Forgery (SSRF) via potential filter bypass in Nextcloud Server
5.3
First published (updated )
Nextcloud Nextcloud ServerMissing brute force protection on cloud federation sharing in Nextcloud Server
6.5
First published (updated )
Nextcloud Nextcloud ServerSMTP Command Injection in iCalendar Attachments to emails via newlines in Nextcloud Server
5.4
First published (updated )