Vulnerabilities > Nextcloud
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-25 | CVE-2021-43863 | SQL Injection vulnerability in Nextcloud The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. | 5.0 |
| 2021-11-30 | CVE-2021-41256 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Nextcloud News nextcloud news-android is an Android client for the Nextcloud news/feed reader app. | 5.8 |
| 2021-11-15 | CVE-2021-39222 | Cross-site Scripting vulnerability in Nextcloud Talk Nextcloud is an open-source, self-hosted productivity platform. | 4.3 |
| 2021-10-25 | CVE-2021-39223 | Unspecified vulnerability in Nextcloud Richdocuments Nextcloud is an open-source, self-hosted productivity platform. | 5.0 |
| 2021-10-25 | CVE-2021-39224 | Unspecified vulnerability in Nextcloud Officeonline Nextcloud is an open-source, self-hosted productivity platform. | 5.0 |
| 2021-10-25 | CVE-2021-39225 | Missing Authorization vulnerability in Nextcloud Deck Nextcloud is an open-source, self-hosted productivity platform. | 5.5 |
| 2021-10-25 | CVE-2021-41177 | Improper Control of Interaction Frequency vulnerability in Nextcloud Server Nextcloud is an open-source, self-hosted productivity platform. | 8.1 |
| 2021-10-25 | CVE-2021-41178 | Relative Path Traversal vulnerability in Nextcloud Server Nextcloud is an open-source, self-hosted productivity platform. | 6.5 |
| 2021-10-25 | CVE-2021-41179 | Missing Critical Step in Authentication vulnerability in Nextcloud Server Nextcloud is an open-source, self-hosted productivity platform. | 4.0 |
| 2021-10-25 | CVE-2021-39220 | Improper Input Validation vulnerability in Nextcloud Mail Nextcloud is an open-source, self-hosted productivity platform The Nextcloud Mail application prior to versions 1.10.4 and 1.11.0 does by default not render images in emails to not leak the read state or user IP. | 3.5 |