Public services like Dropbox are major targets for criminal and state sponsored hacking attempts, but a self hosted alternative which fails to provide security offers no advantage. Security is of the utmost concern to Nextcloud and we work according to industry security standards like ISO27001,...
Per saperne di più
Today we’ve released the first update to Nextcloud 10 and a 3rd update to Nextcloud 9. These releases bring a large number of improvements, most notably an improved updater. We strongly recommend upgrading. Read on for a taste of what is new. Improvements The new...
Per saperne di piùWe ship Guzzle 5 as part of Nextcloud. This handles http requests and supports HTTP_PROXY environment variable which can be abused, in some special scenario’s, by an attacker to read content. In the worst case, when you use the ajax cron feature, an attacker can...
Per saperne di più
Today we are happy to announce the Nextcloud bug bounty program. We offer some of the highest bounties in the open source software industry, rewarding responsible disclosure with up to $5,000 for qualifying vulnerabilities! We have partnered with the HackerOne platform because of its extraordinary...
Per saperne di più
