-
Notifications
You must be signed in to change notification settings - Fork 14
Security: nextcloud/security-advisories
Security Navigation
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
Attachments folder for Text app is accessible on "Files drop" and "Password protected" sharesGHSA-gxph-5m4j-pfmj published
Nov 15, 2024 by nickvergessenLow -
Open redirection when logging in with User OIDCGHSA-784j-x2g5-4g7q published
Nov 15, 2024 by nickvergessenLow -
Authorization Bypass Through User-Controlled Key in TablesGHSA-4qqp-9h2g-7qg7 published
Nov 15, 2024 by nickvergessenModerate -
Share information of Tables app is not limited to affected usersGHSA-rgvc-xr2w-qq45 published
Nov 15, 2024 by nickvergessenLow -
Mail auto configurator sends account information to `autoconfig.tld` server when no auto-configuration is possibleGHSA-vmhx-hwph-q6mc published
Nov 15, 2024 by nickvergessenHigh -
Mail app does not respect download permissions in sharesGHSA-pwpp-fvcr-w862 published
Nov 15, 2024 by nickvergessenLow -
Desktop client behaves incorrectly if the initial end-to-end-encryption signature is emptyGHSA-r4qc-m9mj-452v published
Nov 15, 2024 by nickvergessenModerate -
Desktop client created folders with world-readable and world-writable permissions on LinuxGHSA-hw3v-8vvq-5645 published
Nov 15, 2024 by nickvergessenModerate -
Code injection in Nextcloud Desktop Client for macOSGHSA-4mf7-v63m-99p7 published
Jun 14, 2024 by nickvergessenLow -
Users can delete old versions of read-only shared filesGHSA-xwgx-f37p-xh8c published
Jun 14, 2024 by nickvergessenLow