Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / nextcloud

nextcloud

359 tracked vulnerabilities.

CVE-2026-44515 LOW

Nextcloud News: Authenticated blind SSRF via feed URL

CVE-2026-23696 CRITICAL

Windmill < 1.603.3 File Ownership Handling SQLi RCE

CVE-2026-22683 HIGH

Windmill < 1.615.0 Operator Role Missing Authorization Checks RCE

CVE-2025-64011 MEDIUM

Nextcloud Server 30.0.0 - Authenticated Insecure Direct Object Reference via /core/preview fileId Parameter

CVE-2025-66558 LOW

Nextcloud Twofactor WebAuthn <1.4.2, <2.4.1 - Info Disclosure

CVE-2025-66557 MEDIUM

Nextcloud Deck <1.14.6-1.15.2 - Privilege Escalation

CVE-2025-66556 LOW

Nextcloud talk <20.1.8-21.1.2 - Info Disclosure

CVE-2025-66554 LOW

Nextcloud <5.5.4, <6.0.6, <7.2.5 - Info Disclosure

CVE-2025-66553 MEDIUM

Nextcloud Tables <0.8.7 & 0.9.4 - Info Disclosure

CVE-2025-66551 MEDIUM

Nextcloud Tables <0.8.6-0.9.3 - Privilege Escalation

CVE-2025-66549 LOW

Nextcloud Desktop <3.16.5 - Info Disclosure

CVE-2025-66548 LOW

Nextcloud Deck <1.12.7, 1.14.4, 1.15.1 - Info Disclosure

CVE-2025-66545 LOW

Nextcloud <14.0.11, <15.3.12, <16.0.15, <17.0.14, <18.1.8, <19.1.8,...

CVE-2025-66515 LOW

Nextcloud Approval <1.3.1, 2.5.0 - Privilege Escalation

CVE-2025-66514 LOW

Nextcloud Mail < 5.5.3 - Authenticated Stored HTML Injection in Message List

CVE-2025-66513 MEDIUM

Nextcloud Tables <0.8.9, <0.9.6, <1.0.1 - Info Disclosure

CVE-2025-66552 MEDIUM

Nextcloud Server <30.0.9-31.0.1 - Info Disclosure

CVE-2025-66550 MEDIUM

Nextcloud Calendar <4.7.17-5.2.4 - Info Disclosure

CVE-2025-66547 MEDIUM

Nextcloud Server <31.0.1 - Info Disclosure

CVE-2025-66546 LOW

Nextcloud Calendar <4.7.19, 5.5.6, 6.0.1 - Info Disclosure

CVE-2025-66512 MEDIUM

Nextcloud Server <31.0.12-32.0.3 - Info Disclosure

CVE-2025-66511 MEDIUM

Nextcloud Calendar <6.0.3 - Info Disclosure

CVE-2025-66510 MEDIUM

Nextcloud Server <32.0.1 - Info Disclosure

CVE-2025-59788 MEDIUM

Nextcloud < 32.0.1 - Cross-Site Scripting via Crafted PDF File

CVE-2025-58051 MEDIUM

Nextcloud Tables <0.7.6, 0.8.8, 0.9.5 - Info Disclosure

Page 1 of 15 Next

Products

nextcloud_server 181 nextcloud 28 desktop 27 talk 20 deck 17 mail 15 Nextcloud Server 12 calendar 9 richdocuments 8 contacts 7 user_oidc 7 nextcloud_enterprise_server 6 tables 5 circles 3 group_folders 3 Flow 2 end-to-end_encryption 2 guests 2 news 2 nextcloud_talk 2 notes 2 openid_connect_user_backend 2 preferred_providers 2 server 2 social 2 Nextcloud 1 approval 1 cookbook 1 dialogs 1 extract 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy