Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-7020
A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. This issue affects some unknown processing of the file general/wiki/cp/ct/view.php. The manipulation of the argument TEMP_ID leads to sql injection. The attack may be initiated remotely. The exploi...
Tongda2000 Office Anywhere 2017
9.8
CVSSv3
CVE-2023-7021
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been classified as critical. Affected is an unknown function of the file general/vehicle/checkup/delete_search.php. The manipulation of the argument VU_ID leads to sql injection. It is possible to launch the attack re...
Tongda2000 Office Anywhere 2017
9.8
CVSSv3
CVE-2023-6885
A vulnerability was found in Tongda OA 2017 up to 11.10. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file general/vote/manage/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has be...
Tongda2000 Tongda Office Anywhere
Tongda2000 Tongda Office Anywhere 2017
5.4
CVSSv3
CVE-2023-50137
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) in the site management office.
Jfinalcms Project Jfinalcms 5.0.0
6.5
CVSSv3
CVE-2023-35636
Microsoft Outlook Information Disclosure Vulnerability
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
Microsoft Office Long Term Servicing Channel 2021
2 Github repositories
2 Articles
5.5
CVSSv3
CVE-2023-36009
Microsoft Word Information Disclosure Vulnerability
Microsoft Office 2016
Microsoft 365 Apps -
Microsoft Office 2019
Microsoft Office 2021
5.3
CVSSv3
CVE-2023-35619
Microsoft Outlook for Mac Spoofing Vulnerability
Microsoft Office Long Term Servicing Channel 2021
7.8
CVSSv3
CVE-2023-48677
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40901.
Acronis Cyber Protect Home Office
6.1
CVSSv3
CVE-2023-49782
Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with `Collabora Online - Built-in CODE Server` app can be vulnerable to attack via proxy.php. The bug was fixed in Collabora Online - Built-in CODE Server (richdocumentscod...
Collaboraoffice Richdocumentscode
7.2
CVSSv3
CVE-2023-49788
Collabora Online is a collaborative online office suite based on LibreOffice technology. Unlike a standalone dedicated Collabora Online server, the Built-in CODE Server (richdocumentscode) is run without chroot sandboxing. Vulnerable versions of the richdocumentscode app can be s...
Collaboraoffice Richdocumentscode
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »