CVE-2018-16467

CVE-2018-16467

Vendor N/A

Product Nextcloud Server

Weakness CWE-200 · Info exposure

Published October 30, 2018

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A missing check in Nextcloud Server prior to 14.0.0 could give unauthorized access to the previews of single file password protected shares.

Key dates

02Disclosure timeline

October 30, 2018 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-16467

Related vulnerabilities

04Related CVE

CVE-2026-32618 Discourse: Unauthorized channel membership inference via excluded_memberships_channel_id CVE-2021-32720 List of order ids, number, items total and token value exposed for unauthorized uses via new API CVE-2023-28421 WordPress WordPress Email Marketing Plugin – WP Email Capture Plugin <= 3.10 is vulnerable to Sensitive Data Exposure CVE-2024-3870 Contact Form 7 Database Addon – CFDB7 <= 1.2.6.8 - Unauthenticated Sensitive Information Exposure CVE-2021-20993 WAGO: Managed Switches: Exposure of sensitive information through directory listing