Nextcloud Server — набор клиент-серверных программ для создания и использования хранилища данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 437
CVE-2017-0892
Nextcloud Server before 11.0.3 is vulnerable to an improper session handling allowed an application specific password without permission to the files access to the users file.
CVE-2017-0892
Nextcloud Server before 11.0.3 is vulnerable to an improper session ha ...
CVE-2017-0891
Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components.
CVE-2017-0891
Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to ...
CVE-2017-0890
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.
CVE-2017-0890
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping ...
CVE-2017-0888
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoofing vulnerability in the "files" app. The top navigation bar displayed in the files list contained partially user-controllable input leading to a potential misrepresentation of information.
CVE-2017-0888
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoof ...
CVE-2017-0887
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass in the quota limitation. Due to not properly sanitizing values provided by the `OC-Total-Length` HTTP header an authenticated adversary may be able to exceed their configured user quota. Thus using more space than allowed by the administrator.
CVE-2017-0887
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass in the ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2017-0892 Nextcloud Server before 11.0.3 is vulnerable to an improper session handling allowed an application specific password without permission to the files access to the users file. | CVSS3: 3.5 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0892 Nextcloud Server before 11.0.3 is vulnerable to an improper session ha ... | CVSS3: 3.5 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0891 Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components. | CVSS3: 5.4 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0891 Nextcloud Server before 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to ... | CVSS3: 5.4 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0890 Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue. | CVSS3: 5.4 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0890 Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping ... | CVSS3: 5.4 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0888 Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoofing vulnerability in the "files" app. The top navigation bar displayed in the files list contained partially user-controllable input leading to a potential misrepresentation of information. | CVSS3: 4.3 | 1% Низкий | больше 8 лет назад |
| CVE-2017-0888 Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoof ... | CVSS3: 4.3 | 1% Низкий | больше 8 лет назад |
| CVE-2017-0887 Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass in the quota limitation. Due to not properly sanitizing values provided by the `OC-Total-Length` HTTP header an authenticated adversary may be able to exceed their configured user quota. Thus using more space than allowed by the administrator. | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-0887 Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass in the ... | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
Уязвимостей на страницу