Unauthorized Data Insertion Vulnerability in Nextcloud Tables Product
CVE-2024-52511
Currently unrated
What is CVE-2024-52511?
Nextcloud Tables allows users to create custom tables with individual columns. A vulnerability exists where an attacker can directly specify the ID of a table or view, leading to unauthorized insertion of new rows into tables that should remain inaccessible. This flaw poses significant risks to data integrity and confidentiality. Upgrading to version 0.8.0 is recommended to mitigate this vulnerability.