Security Intel Hub 29+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

Authentication Bypass Risk in Appointment System via Token Parameter

github.com · 2025-12-06

Nextcloud Calendar

Medium

Nextcloud System Address Book Information Disclosure Fix

github.com · 2025-12-06

Nextcloud Server

High

Nextcloud WebAuthn Credential IDOR Vulnerability Fix Analysis

github.com · 2025-12-06

nextcloud/twofactor_webauthn < 1.4.x (stable1.4 branch)

Low

Nextcloud Approval Privilege Escalation via File ID (CVE-2025-66515)

CVE-2025-66515 · github.com · 2025-12-06

Nextcloud Approval >= 1.0.0 · Nextcloud Approval >= 2.0.0

Medium

Nextcloud Tables Information Disclosure Vulnerability (CVE-2025-66553)

GHSA-p53h-6294-crw · github.com · 2025-12-06

Tables >= 0.8.0 · Tables >= 0.9.0

Medium

Nextcloud Contacts Search Information Disclosure via Missing Access Control (CVE-2025-66510)

GHSA-495w-cqv6-wr59 · github.com · 2025-12-06

Nextcloud Server >= 31.0.0, >= 32.0.0 · Nextcloud Enterprise Server >= 28.0.0, >= 29.0.0, >= 30.0.0, >= 31.0.0

Low

Nextcloud user_saml Open Redirect via RelayState (CVE-2024-22400)

CVE-2024-22400 · github.com · 2025-11-11

user_saml >= 5.0.0 · user_saml >= 5.1.0 …

Low

Nextcloud Disabled Shares Allow Download via Preview Images (CVE-2022-41970)

GHSA-9mh6-cph8-772c · github.com · 2025-11-09

Nextcloud Server < 24.0.7 · Nextcloud Server < 25.0.1 …

Medium

Nextcloud Tables Local File Inclusion via PhpSpreadsheet (CVE-2025-58051)

CVE-2025-58051 · github.com · 2025-10-17

nextcloud/tables >= 0.7.0 · nextcloud/tables >= 0.8.0 …

Low

Nextcloud CVE-2025-47794 Insecure Temporary File Creation Vulnerability

CVE-2025-47794 · github.com · 2025-05-17

Nextcloud Enterprise Server >= 26.0.0, >= 27.0.0, >= 28.0.0, >= 29.0.0, >= 30.0.0, >= 31.0.0 · Nextcloud Server >= 29.0.0, >= 30.0.0, >= 31.0.0

Medium

Nextcloud Groupfolders Quota Bypass via Attachment (CVE-2025-47793)

CVE-2025-47793 · github.com · 2025-05-17

Nextcloud Enterprise Server >= 30.0.0 · Nextcloud Enterprise Server >= 29.0.0 …

Medium

Nextcloud CVE-2025-47791: Unrate-limited endpoint allows SSRF

CVE-2025-47791 · github.com · 2025-05-17

Nextcloud Server 28.0.13 · Nextcloud Server 29.0.10 …

Medium

Nextcloud Session Timeout Bypasses 2FA (Moderate Severity)

github.com · 2025-05-17

Nextcloud >= 29.0.0 · Nextcloud >= 30.0.0 …

Medium

Nextcloud External Storage Global Credentials Leakage

github.com · 2024-11-17

Nextcloud Server >= 28.0.0 · Nextcloud Server >= 29.0.0 …

Low

Nextcloud Background Job Hash Collision Vulnerability (CVE-2024-52521)

GHSA-2q6f-gjgj-7hp4 · github.com · 2024-11-17

Nextcloud Server >= 28.0.0 · Nextcloud Server >= 29.0.0 …

Medium

Nextcloud Background Job Argument Hashing Upgraded from MD5 to SHA256

github.com · 2024-11-17

Nextcloud Server <= 28.0.0

Low

Nextcloud Attachments Folder Accessible on Password Protected Shares

github.com · 2024-11-17

Nextcloud Server >= 28.0.0 · Nextcloud Server >= 29.0.0 …

Low

Nextcloud Tables Information Disclosure Vulnerability (GHSA-rgvc-xr2w-qq45)

GHSA-rgvc-xr2w-qq45 · github.com · 2024-11-17

Nextcloud Tables >= 0.3.0

Low

Nextcloud Client-Side Encryption Signature Validation Bypass Fix

github.com · 2024-11-17

Nextcloud Desktop < 3.13

Low

Nextcloud User Password Cleartext in Memory Vulnerability (GHSA-w7v5-mgxm-v6gm)

GHSA-w7v5-mgxm-v6gm · github.com · 2024-11-17

Nextcloud Server >= 28.0.0 · Nextcloud Server >= 29.0.0 …

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 29+