Leon Klingele

**Name of the Vulnerable Software and Affected Versions** Nextcloud Server version 16.0.1 **Description** The issue causes the server to send its domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled. This results in the exposure of private information. **Recommendations** For Nextcloud Server version 16.0.1, consider disabling the Lookup server feature to prevent the exposure of private information until a patch is available. Restrict access to sensitive data to minimize the risk of exploitation.