CNNVD-202512-648 Information
CNNVD ID
CNNVD-202512-648
Related CVE
- CNNVD Published: 2025-12-05
Description (Chinese)
Nextcloud Tables是Nextcloud开源的一个表格应用程序。 Nextcloud Tables 0.8.6之前版本和0.9.3之前版本存在安全漏洞,该漏洞源于恶意用户可将列移动到受害者表格,可能导致数据篡改。
Description (English)
Nextcloud Tables is a table application from the Nextcloud open source. There is a security loophole in the previous version of Nextcloud Tables 0.8.6 and the previous version of 0.9.3, which stems from the fact that malicious users can move the column to the victim’s form, which may lead to data manipulation.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Nextcloud
Published
2025-12-05
Last Modified
2026-02-24
References
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-w787-vwqp-8wr7 https://github.com/nextcloud/tables/commit/39f24a62fb41fd7a8bda65325f8bbafdc91c731c https://github.com/nextcloud/tables/pull/1810 https://hackerone.com/reports/3137895
Patch
https://apps.nextcloud.com/apps/tables
Share on: