Nextcloud - Lookup-server CVE

Filtered by vendor Nextcloud Subscribe

Filtered by product Lookup-server

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-5476	1 Nextcloud	1 Lookup-server	2019-10-09	7.5 HIGH	9.8 CRITICAL
An SQL Injection in the Nextcloud Lookup-Server < v0.3.0 (running on https://lookup.nextcloud.com) caused unauthenticated users to be able to execute arbitrary SQL commands.

Vulnerabilities (CVE)