Primary

Context

Nextcloud News Blind Server-Side Request Forgery Vulnerability

Vulnerability

A blind server-side request forgery (SSRF) vulnerability has been identified in Nextcloud News versions prior to 28.3.0-beta.1. This vulnerability allows authenticated users to add feeds by providing a feed URL through the web interface or API. An authenticated attacker could exploit this by directing the Nextcloud server to make HTTP requests to internal or private IP addresses, including localhost. While the results of these requests are not relayed back to the attacker, this vulnerability could be used to scan or probe internal network services accessible from the Nextcloud server.

Impact

Exploitation of this vulnerability could allow an authenticated attacker to perform blind SSRF, probing internal network services from the perspective of the Nextcloud server.

Remediation

Users can upgrade to Nextcloud News version 28.3.0-beta.1 or later to address this vulnerability.

Added: May 14, 2026, 5:28 PM

Updated: May 14, 2026, 5:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.4

exploitability

4.7

remediation

0.0

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.4

exploitability

4.7

remediation

0.0

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nextcloud News Blind Server-Side Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Nextcloud News

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating