Medium severity4.3OSV Advisory· Published Oct 5, 2020· Updated Jun 17, 2026
CVE-2020-8235
CVE-2020-8235
Description
Missing access control in Nextcloud Deck 1.0.4 caused an insecure direct object reference allowing an attacker to view all attachments.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- hackerone.com/reports/916704nvdExploitThird Party Advisory
- nextcloud.com/security/advisory/nvdVendor Advisory
News mentions
0No linked articles in our index yet.