CVE-2026-45278
EUVD-2026-3370401.06.2026, 19:16
Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses the attackers link to log in via user OIDC. This issue has been patched in version 8.2.2.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| nextcloud | user_oidc | 6.1.0 ≤ 𝑥 < 8.2.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration