A security flaw in Nextcloud Server allows authenticated users to read all file comments, including those they should not normally have access to.
affects: ≥31.0.0 <31.0.12; ≥32.0.0 <32.0.3; ≥21.0.0 <21.0.9.20; ≥22.0.0 <22.2.10.35; ≥23.0.0 <23.0.12.31; ≥24.0.0 <24.0.12.30; ≥25.0.0 <25.0.13.25; ≥26.0.0 <26.0.13.22
A security flaw in Nextcloud's Tables app allows users with app access to perform limited SQL injection attacks to gradually extract database information or cause delays.
A security flaw in Nextcloud Server allows attackers to bypass two-factor authentication by misusing a session cookie as an access token, thereby gaining full read and write access to files.
affects: ≥32.0.0 <32.0.9; ≥33.0.0 <33.0.3; ≥29.0.0 <29.0.16.16; ≥30.0.0 <30.0.17.9; ≥31.0.0 <31.0.14.5
A security flaw in Nextcloud Server allows attackers to bypass two-factor authentication if they know a user's password. Certain versions of the cloud collaboration service are affected, enabling unauthorized access to protected areas.
affects: ≥32.0.0 <32.0.9; ≥33.0.0 <33.0.3; ≥29.0.0 <29.0.16.16; ≥30.0.0 <30.0.17.9; ≥31.0.0 <31.0.14.5
A security flaw in Nextcloud's Tables app allows authenticated users to inject malicious SQL commands into the database, enabling them to extract or modify data.
A vulnerability in Nextcloud Tables allows users with read-only permissions to view filter criteria that should normally remain hidden from them.
In the Nextcloud platform, removed collaborators can still access uploaded files from forms even after their permissions were revoked. This allows unauthorized read access to sensitive user files.
A security vulnerability in Nextcloud allows authenticated users to enumerate other users on the same instance through the Calendar app, bypassing sharing restrictions that should prevent this disclosure.
Nextcloud automatically creates hidden public links when folders are shared with Teams containing external email members. These invisible links grant full access to shared data without authentication and can be exploited by attackers.
affects: ≥32.0.0 <32.0.9; ≥33.0.0 <33.0.3
A vulnerability in Nextcloud allowed deleted LDAP users to continue logging in through OIDC authentication even after their accounts were removed.
A vulnerability in Nextcloud's file locking feature allows authenticated users to lock or unlock other users' files and view their lock tokens, enabling unauthorized access to files belonging to other users.
affects: ≥32.0.0 <32.0.2; ≥33.0.0 <33.0.1; ≥31.0.0 <31.0.14.4
A security vulnerability in Nextcloud allows authenticated users to bypass password protection or download restrictions and access file attachments from link shares when they know the share token.
affects: ≥32.0.0 <32.0.9; ≥33.0.0 <33.0.3; ≥27.0.0 <27.1.11.5; ≥28.0.0 <28.0.14.17; ≥29.0.0 <29.0.16.16; ≥30.0.0 <30.0.17.9; ≥31.0.0 <31.0.14.5
A vulnerability in Nextcloud Server allows authenticated users to access and modify other users' calendars if they know the other user's URL due to improper authorization controls.
affects: ≥32.0.0 <32.0.9; ≥33.0.0 <33.0.3; ≥21.0.0 <21.0.9.23; ≥22.0.0 <22.2.10.39; ≥23.0.0 <23.0.12.35; ≥24.0.0 <24.0.12.34; ≥25.0.0 <25.0.13.29; ≥26.0.0 <26.0.13.26
A security vulnerability in Nextcloud Server allows regular users to copy arbitrary files into their own directory when a specific template configuration is used.
affects: ≥31.0.0 <31.0.14; ≥32.0.0 <32.0.4; ≥28.0.0 <28.0.14.15; ≥29.0.0 <29.0.17.12; ≥30.0.0 <30.0.17.7
A vulnerability in Nextcloud allows attackers to create malicious links that can redirect users to external websites when logging in via OIDC authentication.
A vulnerability in Nextcloud allows authenticated users to discover whether arbitrary files are linked to specific approval workflows, potentially exposing information about files they shouldn't have access to.
A vulnerability in Nextcloud's Approval app allows users without sharing permissions to force the system to share files with approvers, enabling unauthorized distribution of restricted content.
A security flaw in Nextcloud allowed users to view form submissions from other users without proper authorization, potentially leading to unauthorized access to sensitive data.
A vulnerability in Nextcloud allows low-privileged users to mute other participants' microphones in calls when no High-performance Backend is installed.
In Nextcloud versions between 17.0.0 and 21.0.4, users with read and create permissions can rename files in team folders even though they lack update permissions.
In Nextcloud, malicious users with access to an encrypted file drop link can also upload files to other encrypted folders of the owner, even though they shouldn't have permission to do so.
A security vulnerability in Nextcloud allows malicious users with access to a file share to also view temporary partial files during ongoing uploads by exploiting the share token.
A security flaw in Nextcloud's User OIDC feature allowed malicious ID4me authorities to impersonate any user due to missing signature verification checks.
A security flaw in Nextcloud Server allows adding unknown circles to other circles by their ID without proper access verification. This could be exploited to track memberships if the circle ID is obtained through other means.
A vulnerability in Nextcloud allowed guests with read-only access to shared collectives to view deleted pages from the trash, even though they shouldn't have permission to access them.
A security flaw in the Nextcloud Files Android app allowed bypassing the PIN lock by using the back button after unlocking the phone, potentially granting unauthorized access to files.
A vulnerability in the Nextcloud News RSS reader app allows authenticated users to make the server send HTTP requests to internal network services, enabling scanning of those services.
A security flaw in Nextcloud Talk allows attackers to bypass access controls and gain unauthorized entry to protected chat rooms by creating rooms with similar names.
A security flaw in OpenClaw allows attackers to guess weak passwords for Nextcloud Talk webhooks through unlimited repeated login attempts, enabling them to create fake webhook events.
A vulnerability in OpenClaw allows attackers to replay previously used Nextcloud Talk webhook requests, leading to duplicate message processing and potential integrity or availability issues.
A security vulnerability in the Nextcloud Talk plugin allows attackers to bypass access controls by changing their display name to match an authorized user, gaining unauthorized access to protected conversations.
A security vulnerability in OPNsense 19.1 allows attackers to inject malicious scripts through multiple parameters in the backup diagnostic function and execute them in the browsers of logged-in administrators.