What the vulnerability does
01Description
An SQL Injection in the Nextcloud Lookup-Server < v0.3.0 (running on https://lookup.nextcloud.com) caused unauthenticated users to be able to execute arbitrary SQL commands.
CVSS base score
—
Key dates
02Disclosure timeline
August 7, 2019
CVE published
August 4, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-5557 PHPGurukul Teacher Subject Allocation Management System edit-course.php sql injection
CVE-2024-51621 WordPress Download-Mirror-Counter plugin <= 1.1 - SQL Injection vulnerability
CVE-2025-12292 SourceCodester Point of Sales index.php sql injection
CVE-2025-13581 itsourcecode Student Information System schedule_edit1.php sql injection
CVE-2023-4747 DedeCMS tags.php sql injection
