Vulnerabilities > Nextcloud

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-28	CVE-2016-9468	Improper Access Control vulnerability in multiple products Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. network low complexity nextcloud owncloud CWE-284	5.0
2017-03-28	CVE-2016-9467	Improper Access Control vulnerability in multiple products Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. network low complexity nextcloud owncloud CWE-284	5.0
2017-03-28	CVE-2016-9466	Cross-site Scripting vulnerability in multiple products Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Reflected XSS in the Gallery application. network nextcloud owncloud CWE-79	4.3
2017-03-28	CVE-2016-9465	Cross-site Scripting vulnerability in multiple products Nextcloud Server before 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from Stored XSS in CardDAV image export. network nextcloud owncloud CWE-79	3.5
2017-03-28	CVE-2016-9464	Improper Authorization vulnerability in Nextcloud Server Nextcloud Server before 9.0.54 and 10.0.0 suffers from an improper authorization check on removing shares. network low complexity nextcloud CWE-285	4.0
2017-03-28	CVE-2016-9463	Improper Authentication vulnerability in multiple products Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer from SMB User Authentication Bypass. network nextcloud owncloud CWE-287	6.8
2017-03-28	CVE-2016-9462	Improper Access Control vulnerability in multiple products Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying restore privileges when restoring a file. network low complexity nextcloud owncloud CWE-284	4.0
2017-03-28	CVE-2016-9461	Improper Access Control vulnerability in multiple products Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying edit check permissions on WebDAV copy actions. network low complexity nextcloud owncloud CWE-284	4.0
2017-03-28	CVE-2016-9460	Improper Access Control vulnerability in multiple products Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content-spoofing attack in the files app. network low complexity nextcloud owncloud CWE-284	5.0
2017-03-28	CVE-2016-9459	Cross-site Scripting vulnerability in multiple products Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. network nextcloud owncloud CWE-79	4.3

Vulnerabilities > Nextcloud {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Nextcloud"}]}

Vulnerabilities > Nextcloud