exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 429

CVE-2019-5449

больше 6 лет назад

A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events.

CVSS3: 4.3

EPSS: Низкий

CVE-2019-5449

больше 6 лет назад

A missing check in the Nextcloud Server prior to version 15.0.1 causes ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15624

больше 5 лет назад

Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders.

CVSS3: 4.9

EPSS: Низкий

CVE-2019-15624

больше 5 лет назад

Improper Input Validation in Nextcloud Server 15.0.7 allows group admi ...

CVSS3: 4.9

EPSS: Низкий

CVE-2019-15621

больше 5 лет назад

Improper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare with write permissions when sharing the mount point of a share they received, as a public link.

CVSS3: 6.5

EPSS: Низкий

CVE-2019-15621

больше 5 лет назад

Improper permissions preservation in Nextcloud Server 16.0.1 causes sh ...

CVSS3: 6.5

EPSS: Низкий

CVE-2019-15618

больше 5 лет назад

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.

CVSS3: 4.8

EPSS: Низкий

CVE-2019-15618

больше 5 лет назад

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...

CVSS3: 4.8

EPSS: Низкий

CVE-2019-15617

больше 5 лет назад

A missing check in Nextcloud Server 17.0.0 allowed an attacker to set up a new second factor when trying to login.

CVSS3: 5.4

EPSS: Низкий

CVE-2019-15617

больше 5 лет назад

A missing check in Nextcloud Server 17.0.0 allowed an attacker to set ...

CVSS3: 5.4

EPSS: Низкий

CVE-2019-15616

больше 5 лет назад

Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long.

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15616

больше 5 лет назад

Dangling remote share attempts in Nextcloud 16 allow a DNS pollution w ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15613

больше 5 лет назад

A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.

CVSS3: 8

EPSS: Низкий

CVE-2019-15613

больше 5 лет назад

A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend t ...

CVSS3: 8

EPSS: Низкий

CVE-2019-15612

больше 5 лет назад

A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset.

CVSS3: 5.9

EPSS: Низкий

CVE-2019-15612

больше 5 лет назад

A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be c ...

CVSS3: 5.9

EPSS: Низкий

CVE-2018-3780

около 7 лет назад

A missing sanitization of search results for an autocomplete field in NextCloud Server <13.0.5 could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names, hence malicious search results could only be crafted by authenticated users.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-3780

около 7 лет назад

A missing sanitization of search results for an autocomplete field in ...

CVSS3: 5.4

EPSS: Низкий

CVE-2018-3776

около 7 лет назад

Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log.

CVSS3: 5.3

EPSS: Низкий

CVE-2018-3776

около 7 лет назад

Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log.

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-5449 A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events.	CVSS3: 4.3	0% Низкий	больше 6 лет назад
CVE-2019-5449 A missing check in the Nextcloud Server prior to version 15.0.1 causes ...	CVSS3: 4.3	0% Низкий	больше 6 лет назад
CVE-2019-15624 Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders.	CVSS3: 4.9	0% Низкий	больше 5 лет назад
CVE-2019-15624 Improper Input Validation in Nextcloud Server 15.0.7 allows group admi ...	CVSS3: 4.9	0% Низкий	больше 5 лет назад
CVE-2019-15621 Improper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare with write permissions when sharing the mount point of a share they received, as a public link.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2019-15621 Improper permissions preservation in Nextcloud Server 16.0.1 causes sh ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2019-15618 Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.	CVSS3: 4.8	0% Низкий	больше 5 лет назад
CVE-2019-15618 Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...	CVSS3: 4.8	0% Низкий	больше 5 лет назад
CVE-2019-15617 A missing check in Nextcloud Server 17.0.0 allowed an attacker to set up a new second factor when trying to login.	CVSS3: 5.4	0% Низкий	больше 5 лет назад
CVE-2019-15617 A missing check in Nextcloud Server 17.0.0 allowed an attacker to set ...	CVSS3: 5.4	0% Низкий	больше 5 лет назад
CVE-2019-15616 Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long.	CVSS3: 4.3	0% Низкий	больше 5 лет назад
CVE-2019-15616 Dangling remote share attempts in Nextcloud 16 allow a DNS pollution w ...	CVSS3: 4.3	0% Низкий	больше 5 лет назад
CVE-2019-15613 A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.	CVSS3: 8	0% Низкий	больше 5 лет назад
CVE-2019-15613 A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend t ...	CVSS3: 8	0% Низкий	больше 5 лет назад
CVE-2019-15612 A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset.	CVSS3: 5.9	0% Низкий	больше 5 лет назад
CVE-2019-15612 A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be c ...	CVSS3: 5.9	0% Низкий	больше 5 лет назад
CVE-2018-3780 A missing sanitization of search results for an autocomplete field in NextCloud Server <13.0.5 could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names, hence malicious search results could only be crafted by authenticated users.	CVSS3: 5.4	1% Низкий	около 7 лет назад
CVE-2018-3780 A missing sanitization of search results for an autocomplete field in ...	CVSS3: 5.4	1% Низкий	около 7 лет назад
CVE-2018-3776 Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log.	CVSS3: 5.3	0% Низкий	около 7 лет назад
CVE-2018-3776 Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log.	CVSS3: 5.3	0% Низкий	около 7 лет назад

Уязвимостей на страницу