Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an malicious user to create a document which without prompt will execute scripts built-into LibreOffice on clicking a graphic. Such scripts were previously deemed trusted but are now deemed untrusted.