Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Nextcloud Deck before 1.2.7, 1.4.1 suffers from an information disclosure vulnerability when searches for sharees utilize the lookup server by default instead of only the local Nextcloud server unless a global search has been explicitly chosen by the user.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
Deck 信息泄露漏洞
Vulnerability Description
Deck是一个看板风格的组织工具。旨在为与 Nextcloud 集成的团队进行个人规划和项目组织。 Deck 中存在信息泄露漏洞,该漏洞源于允许默认情况下在查找服务器上执行共享搜索。远程攻击者可利用该漏洞访问可能敏感的信息。以下产品和版本会受到影响: Deck: 1.2.0、1.2.1、1.2.2、1.2.3、1.2.4、1.2.5、1.2.6、1.4.0、1.4.1
CVSS Information
N/A
Vulnerability Type
N/A