Filter
AND
Versions
25.0.0
43
24.0.0
41
21.0.0
40
23.0.0
36
26.0.0
28
20.0.0
26
22.0.0
24
27.0.0
21
10.0.0
12
16.0.0
8
13.0.0
7
19.0.0
6
15.0.0
5
22.2.0
5
11.0.0
4
14.0.0
4
17.0.0
4
18.0.0
4
28.0.0
4
24.0.4
3
10.0.2
2
14.0.0-beta1
2
14.0.0-beta2
2
14.0.0-beta3
2
14.0.0-beta4
2
14.0.0-rc1
2
14.0.0-rc2
2
10.0-rc1
1
10.0.1
1
12.0.0
1
12.0.5
1
14.0.5
1
14.0.6
1
16.0.1
1
19.0.1
1
22.2.10.16
1
23.0.12
1
24.0.0-beta1
1
24.0.0-beta2
1
24.0.0-beta3
1
24.0.0-rc1
1
24.0.0-rc2
1
24.0.0-rc3
1
24.0.12
1
24.0.2
1
24.0.8
1
25.0.13
1
25.0.2
1
26.0.8
1
27.1.3
1
28.0.6
1
29.0.0
1
9.0.51
1
9.0.54
1
Nextcloud Nextcloud ServerNextcloud Server's brute force protection allows someone to send more requests than intended
8.7
First published (updated )
Nextcloud Nextcloud ServerNextcloud user scoped external storage can be used to gather credentials of other users
8.8
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server password reset endpoint is not brute force protected
9.1
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server user_ldap app logs user passwords in the log file on level debug
4.4
First published (updated )
Nextcloud Nextcloud ServerRate-limits not working on instances without configured memory cache backend
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerNextcloud Server vulnerable to open redirect on "Unsupported browser" warning
6.1
First published (updated )
Nextcloud Nextcloud ServerNextcloud system addressbooks can be modified by malicious trusted server
8.1
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server HTML injection in search UI when selecting a circle with HTML in the display name
5.4
First published (updated )
Nextcloud Nextcloud ServerMissing password confirmation when creating app passwords
8.1
First published (updated )
Nextcloud Nextcloud ServerMissing brute force protection on password reset token OAuth2 API controller
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerText does not respect "Allow download" permissions
4.3
First published (updated )
Nextcloud Nextcloud ServerAdvanced permissions not respected when copying entire group folders
6.5
First published (updated )
Nextcloud Nextcloud ServerExistence of calendars and address books can be checked by unauthenticated users
5.3
First published (updated )
Nextcloud Nextcloud ServerUsers can delete external storage mount points
7.7
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server has improper restriction of excessive authentication attempts on WebDAV endpoint
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerNextcloud Server before 11.0.7 and 12.0.5 suffers from an Authorization Bypass Through User-Controll…
5.7
First published (updated )
Nextcloud Nextcloud ServerOAuth2 client_secret stored in plain text in the Nextcloud database
8.8
First published (updated )
Nextcloud Nextcloud ServerRate limiter not working reliable when Memcached is installed in Nextcloud
4.3
First published (updated )
Nextcloud Nextcloud ServerWorkflows do not require password confirmation on API level
5.4
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server's users can delete old versions of read-only shared files
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud Nextcloud ServerBruteforce protection can be bypassed with misconfigured proxy
9.8
First published (updated )
Nextcloud Nextcloud ServerNextcloud Photos' shared albums have no restriction on photo removal
3.5
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server's read-only users can restore old versions
4.3
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server's events information leaked with shared calendars on recurrence exceptions
3.5
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from conte…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ownCloud ownCloudNextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer fr…
8.1
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from conte…
5.3
First published (updated )
Nextcloud Nextcloud ServerNextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying restore pri…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.