Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

Nextcloud ServerA wrong configuration in Nextcloud Server 19.0.1 incorrectly made the user feel the passwordless Web…

medium
6.8
First published (updated )
CVE-2020-8236

Nextcloud ServerNextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage…

medium
6.7
First published (updated )
CVE-2020-8296

Nextcloud ServerImproper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare wi…

medium
6.5
First published (updated )
CVE-2019-15621

Nextcloud ServerNextcloud Server before 9.0.55 and 10.0.2 suffers from a Denial of Service attack. Due to an error i…

medium
6.5
First published (updated )
CVE-2017-0886

Nextcloud ServerTwo-Factor Authentication not enforced for pages marked as public

medium
6.5
First published (updated )
CVE-2021-41179

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud ServerA missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials f…

medium
6.5
First published (updated )
CVE-2021-22877

Red Hat FedoraA logic error in Nextcloud Server 19.0.0 caused a privilege escalation allowing malicious users to r…

medium
6.5
First published (updated )
CVE-2020-8223

Nextcloud ServerInput Validation

medium
6.5
First published (updated )
CVE-2020-8293

Nextcloud ServerSSRF

medium
6.5
First published (updated )
CVE-2020-8138

Nextcloud ServerA missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-down…

medium
6.5
First published (updated )
CVE-2020-8139

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud ServerHigh memory usage in Nextcloud server

medium
6.5
First published (updated )
CVE-2022-24741

Nextcloud ServerMissing authorization in Nextcloud text

medium
6.5
First published (updated )
CVE-2021-41233

Nextcloud ServerMissing brute force protection on cloud federation sharing in Nextcloud Server

medium
6.5
First published (updated )
CVE-2022-31118

Nextcloud Enterprise ServerException logging in Sharepoint app reveals clear-text connection details

medium
6.5
First published (updated )
CVE-2022-39364

Nextcloud Enterprise ServerMissing length validation of user displayname in nextcloud server

medium
6.5
First published (updated )
CVE-2022-39346

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud Servernextcloud vulnerable to Uncontrolled Resource Consumption

medium
6.5
First published (updated )
CVE-2023-25816

Nextcloud ServerUser without download rights can download older version of that file in nextcloud server

medium
6.5
First published (updated )
CVE-2023-28844

Nextcloud ServerAdvanced permissions not respected when copying entire group folders

medium
6.5
First published (updated )
CVE-2023-39952

Nextcloud ServerNextcloud Server before 9.0.55 and 10.0.2 suffers from a permission increase on re-sharing via OCS A…

medium
6.4
First published (updated )
CVE-2017-0883

ownCloudXSS

medium
6.1
First published (updated )
CVE-2016-9466

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud ServerXSS

medium
6.1
First published (updated )
CVE-2016-9459

Nextcloud ServerXSS in Nextcloud Text application

medium
6.1
First published (updated )
CVE-2021-32733

Nextcloud ServerXSS

medium
6.1
First published (updated )
CVE-2020-8120

Nextcloud ServerNextcloud Server vulnerable to open redirect on "Unsupported browser" warning

medium
6.1
First published (updated )
CVE-2023-35171

Nextcloud ServerNextcloud Server's global credentials of external storages are sent back to the frontend

medium
5.9
First published (updated )
CVE-2024-52517

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud ServerA bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the pass…

medium
5.9
First published (updated )
CVE-2019-15612

Nextcloud ServerMissing brute force protection on password reset token OAuth2 API controller

medium
5.8
First published (updated )
CVE-2023-39958

Nextcloud ServerA missing access check in Nextcloud Server prior to 14.0.0 could lead to continued access to passwor…

medium
5.7
First published (updated )
CVE-2018-16464

Nextcloud ServerNextcloud Server before 11.0.7 and 12.0.5 suffers from an Authorization Bypass Through User-Controll…

medium
5.7
First published (updated )
CVE-2017-0936

Nextcloud ServerExceptions may have logged Encryption-at-Rest key content in Nextcloud server

medium
5.5
First published (updated )
CVE-2021-32801

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203