CVE-2025-66556

>= 20.0.0 and < 20.1.8

Nextcloud talk is a video & audio conferencing app for Nextcloud. Prior to 20.1.8 and 21.1.2, a participant with chat permissions

3.5LOW

CVE-2023-45149

>= 15.0.0 and < 15.0.8

Nextcloud talk is a chat module for the Nextcloud server platform. In affected versions brute force protection of public talk conv

4.3MEDIUM

CVE-2023-39957

< 17.0.0

Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Prior to version 17.0.0, an unpro

7.8HIGH

CVE-2023-30540

>= 15.0.0 and < 15.0.5

Nextcloud Talk is a chat, video & audio call extension for Nextcloud. In affected versions a user that was added later to a conver

3.5LOW

CVE-2023-28845

>= 14.0.0 and < 14.0.9

Nextcloud talk is a video & audio conferencing app for Nextcloud. In affected versions the talk app does not properly filter acces

3.5LOW

CVE-2023-22473

< 15.0.2

Talk-Android enables users to have video & audio calls through Nextcloud on Android. Due to passcode bypass, an attacker is able t

2.1LOW

CVE-2022-41926

< 14.1.0

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. In affected versions the receiver is no

3.3LOW

CVE-2022-39212

< 13.0.8

Nextcloud Talk is an open source chat, video & audio calls client for the Nextcloud platform. In affected versions an attacker cou

4.3MEDIUM

CVE-2022-35932

< 12.2.7

Nextcloud Talk is a video and audio conferencing app for Nextcloud. Prior to versions 12.2.7, 13.0.7, and 14.0.3, password protect

3.5LOW

CVE-2022-24890

< 13.0.5

Nextcloud Talk is a video and audio conferencing app for Nextcloud. In versions prior to 13.0.5 and 14.0.0, a call moderator can i

2.4LOW

CVE-2022-24887

< 11.3.4

Nextcloud Talk is a video and audio conferencing app for Nextcloud, a self-hosted productivity platform. Prior to versions 11.3.4,

4.3MEDIUM

CVE-2021-41181

< 12.3.0

Nextcloud talk is a self hosting messaging service. In versions prior to 12.3.0 the Nextcloud Android Talk application did not pro

2.4LOW

CVE-2021-41180

< 12.1.2

Nextcloud talk is a self hosting messaging service. In versions prior 12.1.2 an attacker is able to control the link of a geolocat

4.7MEDIUM

CVE-2021-39222

< 10.0.7

Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud Talk application was vulnerable to a stored Cross-Si

6.4MEDIUM

CVE-2021-32689

< 11.2.2

Nextcloud Talk is a fully on-premises audio/video and chat communication service. In versions prior to 11.2.2, if a user was able

8.1HIGH

CVE-2021-32676

< 9.0.10

Nextcloud Talk is a fully on-premises audio/video and chat communication service. Password protected shared chats in Talk before v

6.5MEDIUM

CVE-2020-8180

< 6.0.5

A too lax check in Nextcloud Talk 6.0.4, 7.0.2 and 8.0.7 allowed a code injection when a not correctly sanitized talk command was

9.9CRITICAL

CVE-2019-15620

< 6.0.4

Improper access control in Nextcloud Talk 6.0.3 leaks the existance and the name of private conversations when linked them to anot

2.7LOW

CVE-2019-15619

< 6.0.4

Improper neutralization of file names, conversation names and board names in Nextcloud Server 16.0.3, Nextcloud Talk 6.0.3 and Nex

4.8MEDIUM

CVE-2018-3781

< 3.2.5

A missing sanitization of search results for an autocomplete field in NextCloud Talk <3.2.5 could lead to a stored XSS requiring u

5.4MEDIUM

CVE-2008-4153

<= 5.x-1.2

The Talk module 5.x before 5.x-1.3 and 6.x before 6.x-1.5, a module for Drupal, does not perform access checks for a node before d

CVE-2008-4152

<= 5.x-1.2

Cross-site scripting (XSS) vulnerability in the Talk module 5.x before 5.x-1.3 and 6.x before 6.x-1.5, a module for Drupal, allows

CVE-2005-3899

all versions

The automatic update feature in Google Talk allows remote attackers to cause a denial of service (CPU and memory consumption) by p

CVE-2005-3678

<= 1.0.0.64

Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service (connection res