SecuriTricks - CVE-2025-59788

Description

Cross-site scripting (XSS) vulnerability in a reachable files_pdfviewer example directory in Nextcloud with versions before 22.2.10.33, 23.0.12.29, 24.0.12.28, 25.0.13.23, 26.0.13.20, 27.1.11.20, 28.0.14.11, 29.0.16.8, 30.0.17, 31.0.10, and 32.0.1 allows attackers to execute arbitrary JavaScript in the context of a user's browser via a crafted PDF file to viewer.html. This issue is related to CVE-2024-4367, but the root cause of this Nextcloud issue is that the product exposes executable example code on a same-origin basis.

Product(s) Impacted

Product	Versions
nextcloud	<22.2.10.33
nextcloud	<23.0.12.29
nextcloud	<24.0.12.28
nextcloud	<25.0.13.23
nextcloud	<26.0.13.20
nextcloud	<27.1.11.20
nextcloud	<28.0.14.11
nextcloud	<29.0.16.8
nextcloud	<30.0.17
nextcloud	<31.0.10
nextcloud	<32.0.1

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-749

Exposed Dangerous Method or Function

The product provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.

References

https://github.com/nextcloud/security-advisories/security/advisories/GHSA-24wp-p865-7j4r

https://nextcloud.com

https://www.redteam-pentesting.de/en/advisories/rt-sa-2025-003/

CVSS Score

6.4 / 10

CVSS Data - 3.1

Attack Vector: NETWORK
Attack Complexity: LOW
Privileges Required: LOW
Scope: CHANGED
Confidentiality Impact: LOW
Integrity Impact: LOW
Availability Impact: NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

View Vector String

Timeline

Published: Dec. 4, 2025, 7:16 p.m.
Last Modified: Dec. 8, 2025, 6:27 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

cve@mitre.org

CVE-2025-59788